Lucene search

K
vulnrichmentChromeVULNRICHMENT:CVE-2021-30558
HistoryJan 02, 2023 - 12:00 a.m.

CVE-2021-30558

2023-01-0200:00:00
Chrome
github.com
1
google chrome
content security policy
remote attacker
html page bypass

AI Score

8

Confidence

High

SSVC

Exploitation

none

Automatable

no

Technical Impact

total

Insufficient policy enforcement in content security policy in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to bypass content security policy via a crafted HTML page. (Chrome security severity: Medium)

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*"
    ],
    "vendor": "google",
    "product": "chrome",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "91.0.4472.77",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  }
]

AI Score

8

Confidence

High

SSVC

Exploitation

none

Automatable

no

Technical Impact

total