Vulnerability identifier: #VU71494
Vulnerability risk: Medium
Exploitation vector: Network
Exploit availability: No
The vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a type confusion error within the ServiceWorker API component in Google Chrome. A remote attacker can trick the victim into visiting a specially crafted web page, trigger a type confusion error and gain access to sensitive information.
Update to version 109.0.5414.119.
Vulnerable software versions
Google Chromium: 109.0.5414.0 - 109.0.5414.118
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?