Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') The advisory has been revoked - it doesn't affect any version of package chromium-browser Open this link in a new tab

Threat Intelligence

0.07% (33^rd percentile)

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications

Snyk ID SNYK-UBUNTU1804-CHROMIUMBROWSER-2415268
published 4 Mar 2022
disclosed 2 Mar 2022

Report a new vulnerability Found a mistake?

Introduced: 2 Mar 2022

CVE-2022-23395 Open this link in a new tab CWE-1321 Open this link in a new tab

Amendment

The Ubuntu security team deemed this advisory irrelevant for Ubuntu:18.04.

NVD Description

Note: Versions mentioned in the description apply only to the upstream chromium-browser package and not the chromium-browser package as distributed by Ubuntu.

jQuery Cookie 1.4.1 is affected by prototype pollution, which can lead to DOM cross-site scripting (XSS).

Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') The advisory has been revoked - it doesn't affect any version of package chromium-browser Open this link in a new tab

Threat Intelligence

Introduced: 2 Mar 2022

Amendment

NVD Description

References