How severe is CVE-2022-3310?

CVE-2022-3310 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2022-3310

Name: android
Author: google

6.5MEDIUM

Insufficient policy enforcement in custom tabs in Google Chrome on Android prior to 106.0.5249.62 allowed an attacker who convinced the user to install an application to bypass same origin policy via

Опубликовано: 11/1/2022Обновлено: 5/6/2025

Описание

Insufficient policy enforcement in custom tabs in Google Chrome on Android prior to 106.0.5249.62 allowed an attacker who convinced the user to install an application to bypass same origin policy via a crafted application. (Chromium security severity: Medium)

ИИ-АнализНа базе ИИ

Затронутые продукты

googlechrome

googleandroid

Ссылки

https://chromereleases.googleblog.com/2022/09/stable-channel-update-for-desktop_27.html
Release NotesVendor Advisory
https://crbug.com/1240065
ExploitIssue TrackingVendor Advisory
https://chromereleases.googleblog.com/2022/09/stable-channel-update-for-desktop_27.html
Release NotesVendor Advisory
https://crbug.com/1240065
ExploitIssue TrackingVendor Advisory