Vulnerability CVE-2022-2160
Published: 2022-07-28

Description:
Insufficient policy enforcement in DevTools in Google Chrome on Windows prior to 103.0.5060.53 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information from a user's local files via a crafted HTML page.

 References:
https://crbug.com/1116450
https://chromereleases.googleblog.com/2022/06/stable-channel-update-for-desktop_21.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5BQRTR4SIUNIHLLPWTGYSDNQK7DYCRSB/
Copyright 2026, cxsecurity.com

 

Back to Top