Описание
Insufficient data validation in new tab page in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 97.0.4692.71-0ubuntu0.18.04.1 |
| devel | not-affected | code not present |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/focal | DNE | focal was not-affected [code not present] |
| focal | not-affected | code not present |
| hirsute | not-affected | code not present |
| impish | not-affected | code not present |
| jammy | not-affected | code not present |
| trusty | ignored | end of standard support |
| trusty/esm | DNE |
Показывать по
Ссылки на источники
4.3 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
Insufficient data validation in new tab page in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
Chromium: CVE-2021-4068 Insufficient validation of untrusted input in new tab page
Insufficient data validation in new tab page in Google Chrome prior to ...
Insufficient data validation in new tab page in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
Уязвимость реализации компонента «New Tab Page» («Новая вкладка») браузеров Microsoft Edge и Google Chrome, позволяющая нарушителю оказать влияние на доступность данных или вызвать отказ в обслуживании
4.3 Medium
CVSS2
6.5 Medium
CVSS3