Insufficient policy enforcement in DevTools in Google Chrome prior to 121.0.6167.85 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. (Chromium security severity: Medium)
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Chrome
Published: 2024-01-23T23:53:00.072Z
Updated: 2024-08-01T18:18:18.842Z
Reserved: 2024-01-23T00:47:26.651Z
Link: CVE-2024-0810
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2024-01-24T00:15:08.063
Modified: 2024-01-29T14:29:03.063
Link: CVE-2024-0810
Redhat
No data.