Domain Spoofing Vulnerability in Google Chrome for Android (prior to 91.0.4472.77) Allows Remote Attackers to Perform Payment Fraud

Domain Spoofing Vulnerability in Google Chrome for Android (prior to 91.0.4472.77) Allows Remote Attackers to Perform Payment Fraud

CVE-2021-30540 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Incorrect security UI in payments in Google Chrome on Android prior to 91.0.4472.77 allowed a remote attacker to perform domain spoofing via a crafted HTML page.

Learn more about our Cis Benchmark Audit For Google Android.