Obfuscation of Permission Prompt in Custom Tabs on Android Chrome (CVE-2021-21107)

Obfuscation of Permission Prompt in Custom Tabs on Android Chrome (CVE-2021-21107)

CVE-2023-4900 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 117.0.5938.62 allowed a remote attacker to obfuscate a permission prompt via a crafted HTML page. (Chromium security severity: Medium)

Learn more about our Cis Benchmark Audit For Google Android.