CVE-2021-30580

Name of the Vulnerable Software and Affected Versions Google Chrome for Android versions prior to 92.0.4515.107

Description The issue is related to insufficient policy enforcement in Android intents in Google Chrome, allowing a remote attacker to bypass security restrictions and gain unauthorized access to sensitive information by opening a specially crafted malicious web page. This can occur if a user is convinced to install a malicious application. The attacker can then obtain potentially sensitive information via a crafted HTML page.

Recommendations For Google Chrome for Android versions prior to 92.0.4515.107, update to version 92.0.4515.107 or later to resolve the issue. As a temporary workaround, consider avoiding the installation of applications from untrusted sources and being cautious when opening links from unknown origins. Restrict access to sensitive information and avoid using the browser for sensitive activities until the update is applied.