Vulnerability CVE-2024-0810
Published: 2024-01-24

Description:
Insufficient policy enforcement in DevTools in Google Chrome prior to 121.0.6167.85 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. (Chromium security severity: Medium)

 References:
https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_23.html
https://crbug.com/1496250
Copyright 2026, cxsecurity.com

 

Back to Top