Lucene search

[email protected]CVE-2015-6790

HistoryDec 14, 2015 - 11:59 a.m.

CVE-2015-6790

2015-12-1411:59:00

CWE-20

[email protected]

web.nvd.nist.gov

google chrome

cve-2015-6790

webkit

webpageserializerimpl

html entities

web script

nvd

7.9 High

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.005 Low

EPSS

Percentile

76.8%

JSON

The WebPageSerializerImpl::openTagToString function in WebKit/Source/web/WebPageSerializerImpl.cpp in the page serializer in Google Chrome before 47.0.2526.80 does not properly use HTML entities, which might allow remote attackers to inject arbitrary web script or HTML via a crafted document, as demonstrated by a double-quote character inside a single-quoted string.

CPENameOperatorVersion
google:chromegoogle chromele47.0.2526.73

CPE	Name	Operator	Version
google:chrome	google chrome	le	47.0.2526.73

References

googlechromereleases.blogspot.com/2015/12/stable-channel-update_8.html

lists.opensuse.org/opensuse-security-announce/2015-12/msg00016.html

lists.opensuse.org/opensuse-security-announce/2015-12/msg00017.html

rhn.redhat.com/errata/RHSA-2015-2618.html

www.debian.org/security/2015/dsa-3418

www.securityfocus.com/bid/78734

www.ubuntu.com/usn/USN-2860-1

code.google.com/p/chromium/issues/detail?id=542054

codereview.chromium.org/1398453005

security.gentoo.org/glsa/201603-09

7.9 High

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.005 Low

EPSS

Percentile

76.8%

JSON

Related for CVE-2015-6790

ubuntucve1 debiancve1 prion1 kaspersky1 osv1 mageia1 chrome1 debian2 redhat1 threatpost1 freebsd1 openvas9 archlinux1 nessus9 ubuntu1 suse2 gentoo1