Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveChromeCVE-2015-1223
HistoryMar 09, 2015 - 12:59 a.m.

CVE-2015-1223

2015-03-0900:59:17
Chrome
web.nvd.nist.gov
50
cve
2015
1223
use-after-free
vulnerability
dom
blink
google chrome
denial of service
nvd

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.9

Confidence

High

EPSS

0.016

Percentile

87.8%

JSON

Multiple use-after-free vulnerabilities in core/html/HTMLInputElement.cpp in the DOM implementation in Blink, as used in Google Chrome before 41.0.2272.76, allow remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger extraneous change events, as demonstrated by events for invalid input or input to read-only fields, related to the initializeTypeInParsing and updateType functions.

Affected configurations

Nvd
Node
googlechromeRange40.0.2214.115
VendorProductVersionCPE
googlechrome*cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

Related

prion 1
ubuntucve 1
debiancve 1
nvd 1
cvelist 1
ubuntu 1
nessus 8
securityvulns 2
threatpost 1
openvas 7
mageia 1
redhat 1
kaspersky 1
archlinux 1
chrome 1
suse 1
gentoo 1
freebsd 1
prion
prion
Input validation
2015-03-09 00:59:00
ubuntucve
ubuntucve
CVE-2015-1223
2015-03-08 00:00:00
debiancve
debiancve
CVE-2015-1223
2015-03-09 00:59:00
nvd
nvd
CVE-2015-1223
2015-03-09 00:59:17
cvelist
cvelist
CVE-2015-1223
2015-03-09 00:00:00
ubuntu
ubuntu
Oxide vulnerabilities
2015-03-10 00:00:00
nessus
nessus
Ubuntu 14.04 LTS : Oxide vulnerabilities (USN-2521-1)
2015-03-11 00:00:00
RHEL 6 : chromium-browser (RHSA-2015:0627)
2015-03-06 00:00:00
openSUSE Security Update : chromium (openSUSE-2015-228)
2015-03-17 00:00:00
securityvulns
securityvulns
[USN-2521-1] Oxide vulnerabilities
2015-03-23 00:00:00
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2015-03-23 00:00:00
threatpost
threatpost
Google Fixes 51 Bugs in Chrome 41
2015-03-04 13:58:40
openvas
openvas
Ubuntu: Security Advisory (USN-2521-1)
2015-03-11 00:00:00
Mageia: Security Advisory (MGASA-2015-0123)
2022-01-28 00:00:00
Gentoo Security Advisory GLSA 201503-12
2015-09-29 00:00:00
mageia
mageia
Updated chromium-browser-stable packages fix security vulnerabilities
2015-04-01 15:13:37
redhat
redhat
(RHSA-2015:0627) Important: chromium-browser security update
2015-03-05 00:00:00
kaspersky
kaspersky
KLA10463 Multiple vulnerabilities in Google Chrome
2015-03-03 00:00:00
archlinux
archlinux
chromium: multiple issues
2015-03-05 00:00:00
chrome
chrome
Stable Channel Update
2015-03-03 00:00:00
suse
suse
Security update to Chromium 41.0.2272.76 (important)
2015-03-16 16:05:28
gentoo
gentoo
Chromium: Multiple vulnerabilities
2015-03-22 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2015-03-03 00:00:00

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.9

Confidence

High

EPSS

0.016

Percentile

87.8%

JSON
Related for CVE-2015-1223
prion1ubuntucve1debiancve1nvd1cvelist1ubuntu1nessus8securityvulns2threatpost1openvas7mageia1redhat1kaspersky1archlinux1chrome1suse1gentoo1freebsd1