0.002 Low
EPSS
Percentile
58.9%
chrome is vulnerable to cross site scripting. The vulnerability exists due to an Inappropriate implementation in Blink in Google Chrome prior to 95.0.4638.54 allowed a remote attacker to abuse content security policy via a crafted HTML page.
git://git.launchpad.net/ubuntu-cve-tracker/tree/active/CVE-2021-37989
chromereleases.googleblog.com/2021/10/stable-channel-update-for-desktop_19.html
crbug.com/1233067
www.debian.org/security/2022/dsa-5046