Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusTenable9373.PASL
HistoryJun 16, 2016 - 12:00 a.m.

Google Chrome < 51.0.2704.79 Multiple Vulnerabilities

2016-06-1600:00:00
Tenable
www.tenable.com
8

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

0.024 Low

EPSS

Percentile

89.9%

JSON

The version of Google Chrome installed on the remote host is prior to 51.0.2704.79, and is affected by multiple vulnerabilities :

  • A cross-origin bypass issue exists in Extension bindings. No other details are available. (CVE-2016-1696)
  • A cross-origin bypass issue exists in Blink. No other details are available. (CVE-2016-1697)
  • An information disclosure vulnerability exists in Extension bindings. No other details are available. (CVE-2016-1698)
  • A flaw exists in DevTools due to a failure to sanitize a parameter. No other details are available. (CVE-2016-1699)
  • A use-after-free error exists in Extensions. No other details are available. (CVE-2016-1700)
  • A use-after-free error exists in Autofill. No other details are available. (CVE-2016-1701)
  • An out-of-bounds read error exists in Skia. No other details are available. (CVE-2016-1702)
  • Multiple unspecified issues exists that were found by internal auditing, fuzzing, etc. No other details are available. (CVE-2016-1703)
Binary data 9373.pasl
VendorProductVersionCPE
googlechromecpe:/a:google:chrome

Related

redhat 1
kaspersky 2
openvas 9
nessus 8
suse 3
archlinux 1
mageia 1
chrome 1
debian 2
threatpost 1
osv 1
freebsd 1
redhatcve 9
ubuntucve 9
cve 9
debiancve 9
prion 9
zdi 1
cvelist 9
nvd 9
seebug 1
ubuntu 1
redhat
redhat
(RHSA-2016:1201) Important: chromium-browser security update
2016-06-02 17:50:17
kaspersky
kaspersky
KLA10818 Multiple vulnerabilities in Google Chrome
2016-06-01 00:00:00
KLA10816 Multiple vulnerabilities in Google Chrome
2016-05-25 00:00:00
openvas
openvas
openSUSE: Security Advisory for Chromium (openSUSE-SU-2016:1489-1)
2016-06-05 00:00:00
Mageia: Security Advisory (MGASA-2016-0218)
2022-01-28 00:00:00
Google Chrome Security Updates (stable-channel-update-2016-06) - Windows
2016-06-03 00:00:00
nessus
nessus
RHEL 6 : chromium-browser (RHSA-2016:1201)
2016-06-03 00:00:00
Google Chrome < 51.0.2704.79 Multiple Vulnerabilities
2016-06-03 00:00:00
Google Chrome < 51.0.2704.79 Multiple Vulnerabilities (Mac OS X)
2016-06-03 00:00:00
suse
suse
Security update for Chromium (important)
2016-06-04 12:07:57
Security update for Chromium (important)
2016-06-04 12:07:41
Security update for Chromium (important)
2016-06-05 16:07:48
archlinux
archlinux
chromium: multiple issues
2016-06-05 00:00:00
mageia
mageia
Updated chromium-browser-stable/libpng packages fix security vulnerability
2016-06-08 00:39:50
chrome
chrome
Stable Channel Update
2016-06-01 00:00:00
debian
debian
[SECURITY] [DSA 3594-1] chromium-browser security update
2016-06-04 18:04:44
[SECURITY] [DSA 3594-1] chromium-browser security update
2016-06-04 18:04:44
threatpost
threatpost
Google Patches Two High-Severity Flaws in Chrome
2016-06-02 12:59:38
osv
osv
chromium-browser - security update
2016-06-04 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2016-06-01 00:00:00
redhatcve
redhatcve
CVE-2016-1703
2016-06-02 09:19:59
CVE-2016-1700
2016-06-02 09:20:08
CVE-2016-1699
2016-06-02 09:19:41
ubuntucve
ubuntucve
CVE-2016-1703
2016-06-06 00:00:00
CVE-2016-1696
2016-06-05 00:00:00
CVE-2016-1697
2016-06-06 00:00:00
cve
cve
CVE-2016-1703
2016-06-05 23:59:33
CVE-2016-1700
2016-06-05 23:59:30
CVE-2016-1696
2016-06-05 23:59:26
debiancve
debiancve
CVE-2016-1703
2016-06-05 23:59:00
CVE-2016-1696
2016-06-05 23:59:00
CVE-2016-1700
2016-06-05 23:59:00
prion
prion
Design/Logic Flaw
2016-06-05 23:59:00
Design/Logic Flaw
2016-06-05 23:59:00
Design/Logic Flaw
2016-06-05 23:59:00
zdi
zdi
Trend Micro Maximum Security Regex Matching Use-After-Free Remote Code Execution Vulnerability
2018-02-27 00:00:00
cvelist
cvelist
CVE-2016-1700
2016-06-05 23:00:00
CVE-2016-1697
2016-06-05 23:00:00
CVE-2016-1696
2016-06-05 23:00:00
nvd
nvd
CVE-2016-1699
2016-06-05 23:59:29
CVE-2016-1703
2016-06-05 23:59:33
CVE-2016-1700
2016-06-05 23:59:30
seebug
seebug
Chrome Universal XSS via reentrancy in FrameLoader::startLoad (CVE-2016-1697)
2017-04-21 00:00:00
ubuntu
ubuntu
Oxide vulnerabilities
2016-06-06 00:00:00

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

0.024 Low

EPSS

Percentile

89.9%

JSON
Related for 9373.PASL
redhat1kaspersky2openvas9nessus8suse3archlinux1mageia1chrome1debian2threatpost1osv1freebsd1redhatcve9ubuntucve9cve9debiancve9prion9zdi1cvelist9nvd9seebug1ubuntu1