CVE-2022-24071
Description
Whale browser before 3.12.129.46 has a built-in extension vulnerability allowing attackers to compromise the rendering process and control internal APIs.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Whale browser before 3.12.129.46 has a built-in extension vulnerability allowing attackers to compromise the rendering process and control internal APIs.
Vulnerability
A built-in extension in Whale browser versions before 3.12.129.46 contains a vulnerability that allows attackers to compromise the rendering process. The exact nature of the extension and the conditions required to trigger the vulnerability have not been disclosed in the available reference [1].
Exploitation
The specific exploitation steps and requirements (e.g., network position, user interaction) have not been disclosed in the available reference [1]. It is unknown whether authentication or special privileges are needed.
Impact
Successful exploitation could allow an attacker to compromise the rendering process of the Whale browser, potentially leading to control over browser internal APIs. This could enable further attacks such as data exfiltration or arbitrary code execution within the browser context.
Mitigation
The vulnerability is fixed in Whale browser version 3.12.129.46 [1]. Users should update to this version or later. No workarounds have been provided.
AI Insight generated on May 27, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: <3.12.129.46
- NAVER/NAVER Whale browserv5Range: unspecified
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- cve.naver.com/detail/cve-2022-24071mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.