Intrusion PreventionGoogle.Chrome.CSP.Security.Feature.Bypass
Description
This indicates an attack attempt to exploit a Security Feature Bypass vulnerability in Google Chrome.
The vulnerability is due to an error in the vulnerable application when handling a maliciously crafted HTML page. A remote attacker may be able to exploit this to bypass security feature, via a crafted HTML page.
Affected Products
Google Chrome prior to 91.0.4472.77
Impact
Security Bypass: Remote attackers can bypass security checks of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://chromereleases.googleblog.com/2021/05/stable-channel-update-for-desktop_25.html
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2024-05-09 | 27.783 | Sig Added |
| 2022-02-22 | 19.263 | Sig Added |
| 2022-02-09 | 19.257 | Default_action:pass:drop |
| 2022-02-07 | 19.254 | Sig Added |
| 2022-01-31 | 19.250 |
| ID | 51149 |
| Created | Jan 27, 2022 |
| Updated | May 09, 2024 |
| Risk |
|
| CVE ID | CVE-2018-18350 CVE-2021-30538 |
| Exploit Prediction Score | 1.2% |
| Default Action | drop |
| Active | |
| Affected OS | All |
| Affected App | Other |