Insufficient policy enforcement in Site Isolation in... · CVE-2024-3840 · GitHub Advisory Database · GitHub

Insufficient policy enforcement in Site Isolation in...

Unreviewed Published Apr 17, 2024 to the GitHub Advisory Database • Updated Apr 28, 2024

Package

No package listed— Suggest a package

Affected versions

Unknown

Patched versions

Unknown

Description

Insufficient policy enforcement in Site Isolation in Google Chrome prior to 124.0.6367.60 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Medium)

References

Published by the National Vulnerability Database

Apr 17, 2024

Published to the GitHub Advisory Database Apr 17, 2024

Last updated Apr 28, 2024