Insufficient policy enforcement in Extensions API in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to bypass downloads policy via a crafted HTML page.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Chrome
Published: 2022-07-27T21:19:53
Updated: 2024-08-03T00:17:00.928Z
Reserved: 2022-05-24T00:00:00
Link: CVE-2022-1872
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-07-27T22:15:09.413
Modified: 2022-10-26T13:47:13.473
Link: CVE-2022-1872
Redhat
No data.