CVE-2022-24071

MEDIUM

Whale browser <3.12.129.46 - RCE

Title source: llm

Description

A Built-in extension in Whale browser before 3.12.129.46 allows attackers to compromise the rendering process which could lead to controlling browser internal APIs.

References (1)

[Vendor Advisory] https://cve.naver.com/detail/cve-2022-24071

Scores

CVSS v3 4.3

EPSS 0.0021

EPSS Percentile 42.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Details

CWE

CWE-648

Status published

Products (1)

navercorp/whale < 1.14.0

Published Jan 28, 2022

Tracked Since Feb 18, 2026