Security Advisory

CVE-2024-5840

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-06-11 20:58:11

Last updated 2025-03-13 17:07:25

Assigner Chrome

State PUBLISHED

Description

Policy bypass in CORS in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to bypass discretionary access control via a crafted HTML page. (Chromium security severity: Medium)

← Browse all CVEs View on cve.org ↗