Lucene search
K

6 matches found

CNVD
CNVD
added 2015/12/08 12:0 a.m.1 views

Google Chrome Extensions Memory Misreference Vulnerability

Google Chrome is a web browser developed by the American company Google Google. The 'GetLoadTimes' function in the renderer/loadtimesextensionbindings.cc file in the Extensions implementation of Google Chrome prior to version 47.0.2526.73 A memory misreference vulnerability exists. A remote...

7.5CVSS8.9AI score0.01543EPSS
Exploits0References1
CNVD
CNVD
added 2015/12/08 12:0 a.m.5 views

Google Chrome DOM Homology Policy Bypass Vulnerability

Google Chrome is a web browser developed by the American company Google Google. A security vulnerability exists in the DOM implementation of Google Chrome versions prior to 47.0.2526.73. A remote attacker can exploit the vulnerability to bypass the same-origin policy...

7.5CVSS9AI score0.01957EPSS
Exploits1References1
OSV
OSV
added 2015/12/06 1:59 a.m.7 views

UBUNTU-CVE-2015-6780

Use-after-free vulnerability in the Infobars implementation in Google Chrome before 47.0.2526.73 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted web site, related to browser/ui/views/websitesettings/websitesettingspopupview.cc...

6.8CVSS7.3AI score0.01133EPSS
Exploits0References3
OSV
OSV
added 2015/12/05 12:0 a.m.4 views

UBUNTU-CVE-2015-6765

Use-after-free vulnerability in content/browser/appcache/appcacheupdatejob.cc in Google Chrome before 47.0.2526.73 allows remote attackers to execute arbitrary code or cause a denial of service by leveraging the mishandling of AppCache update jobs...

10CVSS7.5AI score0.04477EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2015/12/03 7:39 p.m.5 views

chromium-browser: Various fixes from internal audits

Multiple unspecified vulnerabilities in Google Chrome before 47.0.2526.73 allow attackers to cause a denial of service or possibly have other impact via unknown vectors...

10CVSS7.4AI score0.08115EPSS
Exploits2References5
RedHat Linux
RedHat Linux
added 2015/12/03 7:39 p.m.3 views

chromium-browser: Wildcard matching issue in CSP

The CSPSource::hostMatches function in WebKit/Source/core/frame/csp/CSPSource.cpp in the Content Security Policy CSP implementation in Google Chrome before 47.0.2526.73 accepts an x.y hostname as a match for a .x.y pattern, which might allow remote attackers to bypass intended access restrictions...

4.3CVSS7.4AI score0.01721EPSS
Exploits0References5
Rows per page
Query Builder