Lucene search

K

Veracode Vulnerability DatabaseVERACODE:36669

HistoryAug 11, 2022 - 8:37 a.m.

Spoofing Attack

2022-08-1108:37:06

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

16

chromium

spoofing attack

fullscreen api

vulnerability

omnibox

EPSS

0.001

Percentile

49.6%

chromium is vulnerable to spoofing attacks. The vulnerability exist due to an inappropriate implementation in Fullscreen API allowing a remote attacker to spoof the contents of the Omnibox via a crafted HTML page.

References

chromereleases.googleblog.com/2022/08/stable-channel-update-for-desktop.html

crbug.com/1320538

lists.fedoraproject.org/archives/list/[email protected]/message/T4NMJURTG5RO3TGD7ZMIQ6Z4ZZ3SAVYE/

security-tracker.debian.org/tracker/CVE-2022-2611

security.gentoo.org/glsa/202208-35

EPSS

0.001

Percentile

49.6%

Related for VERACODE:36669

prion1 osv4 mscve1 cve1 nvd1 ubuntucve1 debiancve1 cvelist1 kaspersky2 nessus9 debian1 mageia1 openvas6 suse2 freebsd1 chrome1 gentoo1 fedora3 rapid7blog1