CVE-2016-1627

🗓️ 14 Feb 2016 02:59:05Reported by [email protected]Type

Google Chrome DevTools subsystem lacks URL scheme validation and allows bypass of access restrictions via crafted URL

Reporter	Title	Published	Views	Family All 37
FreeBSD	chromium -- multiple vulnerabilities	8 Feb 201600:00	–	freebsd
CNVD	Google Chrome DevTools Subsystem Access Restriction Bypass Vulnerability	16 Feb 201600:00	–	cnvd
CVE	CVE-2016-1627	14 Feb 201602:00	–	cve
Cvelist	CVE-2016-1627	14 Feb 201602:00	–	cvelist
Debian	[SECURITY] [DSA 3486-1] chromium-browser security update	21 Feb 201621:56	–	debian
Debian	[SECURITY] [DSA 3486-1] chromium-browser security update	21 Feb 201621:56	–	debian
Debian CVE	CVE-2016-1627	14 Feb 201602:00	–	debiancve
Tenable Nessus	Debian DSA-3486-1 : chromium-browser - security update	22 Feb 201600:00	–	nessus
Tenable Nessus	FreeBSD : chromium -- multiple vulnerabilities (36034227-cf81-11e5-9c2b-00262d5ed8ee)	10 Feb 201600:00	–	nessus
Tenable Nessus	GLSA-201603-09 : Chromium: Multiple vulnerabilities	14 Mar 201600:00	–	nessus

NVD

Node

Node

Node

google chromeRange≤48.0.2564.103

Source	Link
security	www.security.gentoo.org/glsa/201603-09
securitytracker	www.securitytracker.com/id/1035183
codereview	www.codereview.chromium.org/1586903002
lists	www.lists.opensuse.org/opensuse-updates/2016-02/msg00119.html
securityfocus	www.securityfocus.com/bid/83125
code	www.code.google.com/p/chromium/issues/detail
code	www.code.google.com/p/chromium/issues/detail
rhn	www.rhn.redhat.com/errata/RHSA-2016-0241.html
googlechromereleases	www.googlechromereleases.blogspot.com/2016/02/stable-channel-update_9.html
debian	www.debian.org/security/2016/dsa-3486

06 May 2026 22:30Current

8.3High risk

Vulners AI Score8.3

CVSS 26.8

CVSS 38.8

EPSS0.01244