CVE-2022-2479

Summary

Insufficient validation of untrusted input in File in Google Chrome on Android prior to 103.0.5060.134 allowed an attacker who convinced a user to install a malicious app to obtain potentially sensitive information from internal file directories via a crafted HTML page.

Affected Software

VendorProductVersion RangeStatus
GoogleChromeunspecified < 103.0.5060.134affected

Weaknesses

  • Insufficient validation of untrusted input

ADP Enrichment

CVE Program Container

Additional References

References