Security Advisory

CVE-2024-7978

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-08-21 20:20:26

Last updated 2024-10-29 19:53:20

Assigner Chrome

State PUBLISHED

Description

Insufficient policy enforcement in Data Transfer in Google Chrome prior to 128.0.6613.84 allowed a remote attacker who convinced a user to engage in specific UI gestures to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)

← Browse all CVEs View on cve.org ↗