CVE-2016-1622 in Chrome信息

摘要

由 VulDB • 2026-06-12

Google Chrome 48.0.2564.109 之前的版本中,Extensions(扩展)子系统未能阻止使用 `Object.defineProperty` 方法覆盖预期的扩展行为,这使得远程攻击者能够通过构造的 JavaScript 代码绕过同源策略 (Same Origin Policy)。

VulDB is the best source for vulnerability data and more expert information about this specific topic.

来源

Might our Artificial Intelligence support you?

Check our Alexa App!