Information disclosure

2023-05-3022:15:00

PRIOn knowledge base

www.prio-n.com

information disclosure

inappropriate implementation

google chrome

extensions api

spoofing

malicious extension

chrome extension

chromium

low severity

security vulnerability

AI Score

3.7

Confidence

High

EPSS

0.001

Percentile

40.7%

JSON

Inappropriate implementation in Extensions API in Google Chrome prior to 114.0.5735.90 allowed an attacker who convinced a user to install a malicious extension to spoof the contents of the UI via a crafted Chrome Extension. (Chromium security severity: Low)