Описание
Inappropriate implementation in Extensions API in Google Chrome prior to 133.0.6943.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted Chrome Extension. (Chromium security severity: Medium)
Ссылки
- Release Notes
- Issue Tracking
Уязвимые конфигурации
EPSS
6.3 Medium
CVSS3
Дефекты
Связанные уязвимости
Chromium: CVE-2025-0451 Inappropriate implementation in Extensions API
Inappropriate implementation in Extensions API in Google Chrome prior ...
Inappropriate implementation in Extensions API in Google Chrome prior to 133.0.6943.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted Chrome Extension. (Chromium security severity: Medium)
Уязвимость компонента Extensions API браузера Google Chrome, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
EPSS
6.3 Medium
CVSS3