CVE-2022-24075

EPSS 0.8%CWE-552

Whale browser before 3.12.129.18 allowed extensions to replace JavaScript files of the HWP viewer website which could access to local HWP files. When the HWP files were opened, the replaced script could read the files.

Affected products

NAVER · NAVER Whale browser

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://cve.naver.com/detail/cve-2022-24075