Vulnerabilities

CVE-2024-10229

by Fred · 22/10/2024

Inappropriate implementation in Extensions in Google Chrome prior to 130.0.6723.69 allowed a remote attacker to bypass site isolation via a crafted Chrome Extension. (Chromium security severity: High)

More information : https://chromereleases.googleblog.com/2024/10/stable-channel-update-for-desktop_22.html

Attack vector : NETWORK
Attack complexity : LOW
Privileges required : NONE
User interaction : REQUIRED
Confidentiality impact : HIGH
Integrity impact : HIGH
Base score : 8.1
Base severity : HIGH
Exploitability score : 2.8
Impact score : 5.2

Similar

Tags: Cybersecurity Alert