CVE-2022-2615

Medium

Insufficient policy enforcement in Cookies in Google Chrome prior to 104.0.5112.79 allowed a remote attacker to leak cross-origin data via…

Chrome·CWE-565·Published 2022-08-12

CVSS

6.5

EPSS

0.01

KEV

Exploits

cve.orgen

159 chars

Insufficient policy enforcement in Cookies in Google Chrome prior to 104.0.5112.79 allowed a remote attacker to leak cross-origin data via a crafted HTML page.

NVDen

159 chars

Insufficient policy enforcement in Cookies in Google Chrome prior to 104.0.5112.79 allowed a remote attacker to leak cross-origin data via a crafted HTML page.

NVDes

209 chars

Una aplicación insuficiente de la política en Cookies en Google Chrome versiones anteriores a 104.0.5112.79, permitía a un atacante remoto filtrar datos de origen cruzado por medio de una página HTML diseñada.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	NVD	6.5	2.8	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N