Assigner | Chrome |
Reserved | 2024-06-11 |
Published | 2024-06-11 |
Updated | 2024-07-19 |
Description
Policy bypass in CORS in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to bypass discretionary access control via a crafted HTML page. (Chromium security severity: Medium)
Problem types
Policy bypass
Product status
References
https://chromereleases.googleblog.com/2024/06/stable-channel-update-for-desktop.html
https://issues.chromium.org/issues/41492103