CVE-2022-4911

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 106.0.5249.62

Description The issue is related to insufficient data validation in DevTools, allowing a remote attacker to bypass content security policy via a crafted HTML page. This could potentially impact a significant number of devices worldwide, given the popularity of Google Chrome. However, specific numbers of potentially affected devices are not provided.

Recommendations For versions prior to 106.0.5249.62, update to version 106.0.5249.62 or later to resolve the issue. As a temporary workaround, consider restricting access to DevTools until the update is applied.