Lucene search

K
cve[email protected]CVE-2014-1726
HistoryApr 09, 2014 - 10:57 a.m.

CVE-2014-1726

2014-04-0910:57:56
web.nvd.nist.gov
32
cve-2014-1726
google chrome
same origin policy
remote attackers

5.9 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.007 Low

EPSS

Percentile

80.7%

The drag implementation in Google Chrome before 34.0.1847.116 allows user-assisted remote attackers to bypass the Same Origin Policy and forge local pathnames by leveraging renderer access.

Affected configurations

NVD
Node
googlechromeRange34.0.1847.115

5.9 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.007 Low

EPSS

Percentile

80.7%