VDB

CISA-2024-10229

CISA-2024-10229 PUBLISHED CVSS 8.1 HIGH

Reported by Chrome · Published October 22, 2024

Inappropriate implementation in Extensions in Google Chrome prior to 130.0.6723.69 allowed a remote attacker to bypass site isolation via a crafted Chrome Extension. (Chromium security severity: High)

Risk Scores

CVSS 3.1
8.1
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

Affected Products

VendorProductVersions
GoogleChrome130.0.6723.69
GoogleChrome130.0.6723.69, 130.0.6723.69
googlechrome0, 0

Timeline

  • Oct 22, 2024 CVE Published
  • Oct 23, 2024 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›