Origin Validation Error

CVE-2023-1234

Medium

4.3/10

Summary

Inappropriate implementation in Intents in Google Chrome on Android prior to 111.0.5563.64 allowed a remote attacker to perform domain spoofing via a crafted HTML page.

Attack Complexity: LOW
Attack Vector: NETWORK
Integrity Impact: LOW
Scope: UNCHANGED
User Interaction: REQUIRED
Privileges Required: NONE
Confidentiality Impact: NONE
Availability Impact: NONE

CWE-346 - Origin Validation Error

The software does not properly verify that the source of data or communication is valid.

References

Advisory
Release Note

Advisory Timeline

Published Mar 07, 2023

Origin Validation Error

CVE-2023-1234

Summary

CWE-346 - Origin Validation Error

References

Advisory Timeline

DustiLock

Wireshark

CuteBoi