Lucene search

K
freebsdFreeBSD36034227-CF81-11E5-9C2B-00262D5ED8EE
HistoryFeb 08, 2016 - 12:00 a.m.

chromium -- multiple vulnerabilities

2016-02-0800:00:00
vuxml.freebsd.org
11

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.021 Low

EPSS

Percentile

89.1%

Google Chrome Releases reports:

6 security fixes in this release, including:

[546677] High CVE-2016-1622: Same-origin bypass in Extensions.
Credit to anonymous.
[577105] High CVE-2016-1623: Same-origin bypass in DOM. Credit
to Mariusz Mlynski.
[509313] Medium CVE-2016-1625: Navigation bypass in Chrome
Instant. Credit to Jann Horn.
[571480] Medium CVE-2016-1626: Out-of-bounds read in PDFium.
Credit to anonymous, working with HP’s Zero Day Initiative.
[585517] CVE-2016-1627: Various fixes from internal audits,
fuzzing and other initiatives.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchchromium< 48.0.2564.109UNKNOWN
FreeBSDanynoarchchromium-npapi< 48.0.2564.109UNKNOWN
FreeBSDanynoarchchromium-pulse< 48.0.2564.109UNKNOWN

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.021 Low

EPSS

Percentile

89.1%

Related for 36034227-CF81-11E5-9C2B-00262D5ED8EE