← volver
CVE-2022-1488

CVE-2022-1488

EPSS 0.5%
Inappropriate implementation in Extensions API in Google Chrome prior to 101.0.4951.41 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension.
Productos afectados
Google · Chrome

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://chromereleases.googleblog.com/2022/04/stable-channel-update-for-desktop_26.htmlhttps://crbug.com/1302959https://security.gentoo.org/glsa/202208-25