PT-2022-2048 · Microsoft · Skype Extension For Chrome

Wladimir Palant

Published

2022-02-05

Updated

2023-08-08

CVE-2022-24522

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:C/I:N/A:N

Name of the Vulnerable Software and Affected Versions Skype Extension for Chrome (affected versions not specified)

Description The issue is related to insufficient restrictions in the controlled area of the system, which can be exploited by a remote attacker to gain unauthorized access to protected information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Information Disclosure

Exposure of Resource to Wrong Sphere

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200CWE-668

Related Identifiers

BDU:2022-01704

CVE-2022-24522

Affected Products

Skype Extension For Chrome

PT-2022-2048 · Microsoft · Skype Extension For Chrome

CVE-2022-24522

Weakness Enumeration

Related Identifiers

Affected Products

References · 6