Design/Logic Flaw

2015-02-0611:59:00

PRIOn knowledge base

www.prio-n.com

6.8 Medium

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.009 Low

EPSS

Percentile

82.2%

JSON

The OriginCanAccessServiceWorkers function in content/browser/service_worker/service_worker_dispatcher_host.cc in Google Chrome before 40.0.2214.111 on Windows, OS X, and Linux and before 40.0.2214.109 on Android does not properly restrict the URI scheme during a ServiceWorker registration, which allows remote attackers to gain privileges via a filesystem: URI.

CPENameOperatorVersion
ubuntu_linuxeq14.10
ubuntu_linuxeq14.04
chromelt40.0.2214.109
chromelt40.0.2214.111
opensuseeq13.1
opensuseeq13.2
enterprise_linux_desktopeq6.0
enterprise_linux_euseq6.6
enterprise_linux_servereq6.0
enterprise_linux_server_auseq6.6

Name	Operator	Version
ubuntu_linux	eq	14.10
ubuntu_linux	eq	14.04
chrome	lt	40.0.2214.109
chrome	lt	40.0.2214.111
opensuse	eq	13.1
opensuse	eq	13.2
enterprise_linux_desktop	eq	6.0
enterprise_linux_eus	eq	6.6
enterprise_linux_server	eq	6.0
enterprise_linux_server_aus	eq	6.6