SUSE CVE-2021-38020

Insufficient policy enforcement in contacts picker in Google Chrome on Android prior to 96.0.4664.45 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

Content Spoofing

chrome is vulnerable to content spoofing. The vulnerability exists due to a lack of enforcement on the police in contacts picker in Google Chrome allowing an attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2021:1632-1 Rating: important References: 1192310 1192734 1193519 1193713 Cross-References: CVE-2021-38005 CVE-2021-38006 CVE-2021-38007 CVE-2021-38008 CVE-2021-38009 CVE-2021-38010 CVE-2021-38011 CVE-2021-38012...

DEBIAN-CVE-2021-38020

Insufficient policy enforcement in contacts picker in Google Chrome on Android prior to 96.0.4664.45 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

CVE-2021-38020

Insufficient policy enforcement in contacts picker in Google Chrome on Android prior to 96.0.4664.45 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

UBUNTU-CVE-2021-38020

Insufficient policy enforcement in contacts picker in Google Chrome on Android prior to 96.0.4664.45 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

CVE-2021-38020

Insufficient policy enforcement in contacts picker in Google Chrome on Android prior to 96.0.4664.45 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

CVE-2021-38020

CVE-2021-38020 : A information-disclosure vulnerability in Chromium’s contacts picker (Chromium-based Chrome/Chromium) before 96.0.4664.45 arises from insufficient policy enforcement, allowing leakage of contact information via crafted content. Public advisories (Debian DSA-5046-1 and Arch Linux ...

CVE-2021-38020

Insufficient policy enforcement in contacts picker in Google Chrome on Android prior to 96.0.4664.45 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

The vulnerability of the Contacts Picker component in the Google Chrome browser allows a hacker to bypass security restrictions and gain unauthorized access to protected information.

The vulnerability of the Contacts Picker component in the Google Chrome browser is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to bypass security restrictions and gain unauthorized access to protected information through a specially creat...

Chromium: CVE-2021-38020 Insufficient policy enforcement in contacts picker

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

chromium -- multiple vulnerabilities

Chrome Releases reports: This release contains 25 security fixes, including: 1263620 High CVE-2021-38008: Use after free in media. Reported by Marcin Towalski of Cisco Talos on 2021-10-26 1260649 High CVE-2021-38009: Inappropriate implementation in cache. Reported by Luan Herrera @lbherrera on...