CVE-2021-21228

Insufficient policy enforcement in extensions in Google Chrome prior to 90.0.4430.93 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension.
Configurations

Configuration 1 (hide)

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

Information

Published : 2021-04-30 21:15

Updated : 2021-05-14 23:15


NVD link : CVE-2021-21228

Mitre link : CVE-2021-21228


JSON object : View

Products Affected

debian

  • debian_linux

google

  • chrome
CWE
CWE-863

Incorrect Authorization