What the vulnerability does
01Description
Arc before 1.26.1 on Windows has a bypass issue in the site settings that allows websites (with previously granted permissions) to add new permissions when the user clicks anywhere on the website.
CVSS base score
CVSS vector
CVSS:3.1/AC:L/AV:N/A:L/C:H/I:H/PR:N/S:C/UI:R
What the vulnerability does
Arc before 1.26.1 on Windows has a bypass issue in the site settings that allows websites (with previously granted permissions) to add new permissions when the user clicks anywhere on the website.
Key dates
External resources