This issue was fixed by updating Google Chrome to version 104.0.2.
Redirect injection via extensions in Google Chrome prior to version 104.0.1 allowed a remote attacker to inject arbitrary redirects via an extension.
Redirect injection via extensions in Google Chrome prior to version 104.0.1 allowed a remote attacker to inject arbitrary redirects via an extension.
Insecure OAuth usage in Google Chrome prior to version 104.0.1 allowed a remote attacker to access the locations of saved login details via a crafted HTML page.
Insecure OAuth usage in Google Chrome prior to version 104.0.1 allowed a remote attacker to access the locations of saved login details via a crafted HTML page. Incorrect certificate validation in Google Chrome prior to version 104.0.1 allowed a remote attacker to issue a warning message on the Google Chrome Sign-In Page via a crafted HTML page.
Incorrect certificate validation in Google Chrome prior to version 104.0.1 allowed a remote attacker to issue a warning message on the Google Chrome Sign-In Page via a crafted HTML page. Incorrect password prompt in Google Chrome prior to version 104.0.1 allowed a remote attacker to obtain sensitive information via a crafted HTML page.
Incorrect password prompt in Google Chrome prior to version 104.0.1 allowed a remote attacker to obtain sensitive information via a crafted HTML page. Incorrect certificate validation in Google Chrome prior to version 104.0.
Vulnerability Characteristics andRecommendation
Vulnerability was disclosed to Google on September 10th, 2014.
Vulnerability was fixed on September 25th, 2014.
What is Google Chrome?
Google Chrome is a free and open-source web browser that is developed by Google. It was first released in 2008, with a total of over 700 million downloads as of September 2019.
Timeline
Published on: 09/26/2022 16:15:00 UTC
Last modified on: 09/28/2022 19:00:00 UTC