29 matches found
Design/Logic Flaw
The WebRequest API implementation in extensions/browser/api/webrequest/webrequestapi.cc in Google Chrome before 45.0.2454.85 does not properly consider a request's source before accepting the request, which allows remote attackers to bypass intended access restrictions via a crafted 1 app or 2...
UBUNTU-CVE-2015-1297
The WebRequest API implementation in extensions/browser/api/webrequest/webrequestapi.cc in Google Chrome before 45.0.2454.85 does not properly consider a request's source before accepting the request, which allows remote attackers to bypass intended access restrictions via a crafted 1 app or 2...
CVE-2015-1297
CVE-2015-1297 affects Google Chrome’s WebRequest API (extensions/browser/api/web_request/web_request_api.cc) where the request source is not properly validated, allowing remote attackers to bypass access restrictions via a crafted app or extension. The vulnerability is fixed in Chrome 45.0.2454.8...
CVE-2015-1297
Removed by vendor...
CVE-2012-2853
The webRequest API in Google Chrome before 21.0.1180.57 on Mac OS X and Linux, and before 21.0.1180.60 on Windows and Chrome Frame, does not properly interact with the Chrome Web Store, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a...
Design/Logic Flaw
The webRequest API in Google Chrome before 21.0.1180.57 on Mac OS X and Linux, and before 21.0.1180.60 on Windows and Chrome Frame, does not properly interact with the Chrome Web Store, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a...
CVE-2012-2853
The webRequest API in Google Chrome before 21.0.1180.57 on Mac OS X and Linux, and before 21.0.1180.60 on Windows and Chrome Frame, does not properly interact with the Chrome Web Store, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a...
CVE-2012-2853
Removed by vendor...
CVE-2012-2853
CVE-2012-2853 affects Google Chrome before 21.0.1180.57 on macOS/Linux and before 21.0.1180.60 on Windows/Chrome Frame. The issue arises from the webRequest API not interacting properly with the Chrome Web Store, allowing a remote attacker to cause a denial of service or possibly other unspecifie...