Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2025-12445

Опубликовано: 10 нояб. 2025
Источник: redhat
CVSS3: 4.3

Описание

Policy bypass in Extensions in Google Chrome prior to 142.0.7444.59 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. (Chromium security severity: Low)

Отчет

Red Hat Product Security rates the severity of this flaw as determined by the Google Chrome Security Advisory.

Ссылки на источники

Дополнительная информация

Статус:

Low
Дефект:
CWE-266
https://bugzilla.redhat.com/show_bug.cgi?id=2413847chromium-browser: Policy bypass in Extensions

4.3 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2025-12445

CVSS3: 6.5
ubuntu
5 месяцев назад

Policy bypass in Extensions in Google Chrome prior to 142.0.7444.59 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. (Chromium security severity: Low)

nvd логотип

CVE-2025-12445

CVSS3: 6.5
nvd
5 месяцев назад

Policy bypass in Extensions in Google Chrome prior to 142.0.7444.59 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. (Chromium security severity: Low)

msrc логотип

CVE-2025-12445

msrc
5 месяцев назад

Chromium: CVE-2025-12445 Policy bypass in Extensions

debian логотип

CVE-2025-12445

CVSS3: 6.5
debian
5 месяцев назад

Policy bypass in Extensions in Google Chrome prior to 142.0.7444.59 al ...

github логотип

GHSA-3x5x-62pf-8jpr

CVSS3: 6.5
github
5 месяцев назад

Policy bypass in Extensions in Google Chrome prior to 142.0.7444.59 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. (Chromium security severity: Low)

4.3 Medium

CVSS3