Insufficient policy enforcement in extensions in Google Chrome prior to 85.0.4183.121 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted Chrome Extension.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
Information
Published : 2020-09-21 13:15
Updated : 2021-01-29 09:42
NVD link : CVE-2020-15963
Mitre link : CVE-2020-15963
JSON object : View
CWE
Products Affected
opensuse
- backports_sle
- leap
- chrome
fedoraproject
- fedora
debian
- debian_linux