CVE-2021-30589

Medium

Insufficient validation of untrusted input in Sharing in Google Chrome prior to 92.0.4515.107 allowed a remote attacker to bypass…

Chrome·CWE-20·Published 2021-08-03

CVSS

4.3

EPSS

0.02

KEV

Exploits

cve.orgen

187 chars

Insufficient validation of untrusted input in Sharing in Google Chrome prior to 92.0.4515.107 allowed a remote attacker to bypass navigation restrictions via a crafted click-to-call link.

NVDen

187 chars

Insufficient validation of untrusted input in Sharing in Google Chrome prior to 92.0.4515.107 allowed a remote attacker to bypass navigation restrictions via a crafted click-to-call link.

NVDes

233 chars

Una comprobación insuficiente de las entradas no fiables en Sharing en Google Chrome anterior a versión 92.0.4515.107, permitía a un atacante remoto omitir las restricciones de navegación por medio de un enlace click-to-call diseñado

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:P/A:N
3.1	Primary	NVD	4.3	2.8	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N