Lucene search
K

9 matches found

seebug.org
seebug.org
added 2017/04/24 12:0 a.m.40 views

Chrome Universal XSS using navigator.serviceWorker.ready (CVE-2015-1292)

VULNERABILITY DETAILS From /WebKit/Source/modules/serviceworkers/ServiceWorkerContainer.cpp: ScriptPromise ServiceWorkerContainer::readyScriptState callerState if !executionContext return ScriptPromise; ... if !mready mready = createReadyProperty; if mprovider mprovider-getRegistrationForReadynew...

5CVSS8.6AI score0.0157EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2015/09/17 12:0 a.m.45 views

RHEL 6 : chromium-browser (RHSA-2015:1712)

The remote Redhat Enterprise Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2015:1712 advisory. Chromium is an open-source web browser, powered by WebKit Blink. Several flaws were found in the processing of malformed web content. A web...

7.5CVSS8.7AI score0.0224EPSS
Exploits2References25
securityvulns
securityvulns
added 2015/09/14 12:0 a.m.103 views

[USN-2735-1] Oxide vulnerabilities

========================================================================== Ubuntu Security Notice USN-2735-1 September 08, 2015 oxide-qt vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives...

7.5CVSS0.9AI score0.02568EPSS
Exploits2
OpenVAS
OpenVAS
added 2015/09/09 12:0 a.m.30 views

Ubuntu: Security Advisory (USN-2735-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.8AI score0.02568EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2015/09/07 12:0 a.m.42 views

Google Chrome Multiple Vulnerabilities-01 (Sep 2015) - Windows

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...

7.5CVSS8.5AI score0.02677EPSS
Exploits2References1
NVD
NVD
added 2015/09/03 10:59 p.m.20 views

CVE-2015-1292

The NavigatorServiceWorker::serviceWorker function in modules/serviceworkers/NavigatorServiceWorker.cpp in Blink, as used in Google Chrome before 45.0.2454.85, allows remote attackers to bypass the Same Origin Policy by accessing a Service Worker...

5CVSS8.7AI score0.0157EPSS
Exploits1References10
CVE
CVE
added 2015/09/03 10:0 p.m.86 views

CVE-2015-1292

CVE-2015-1292 is a concrete Chrome/Blink vulnerability. The NavigatorServiceWorker::serviceWorker function in modules/serviceworkers/NavigatorServiceWorker.cpp allowed a remote attacker to bypass the Same Origin Policy by accessing a Service Worker, as part of Chrome before 45.0.2454.85. Public d...

5CVSS8.2AI score0.0157EPSS
Exploits1References10Affected Software1
UbuntuCve
UbuntuCve
added 2015/09/02 12:0 a.m.25 views

CVE-2015-1292

The NavigatorServiceWorker::serviceWorker function in modules/serviceworkers/NavigatorServiceWorker.cpp in Blink, as used in Google Chrome before 45.0.2454.85, allows remote attackers to bypass the Same Origin Policy by accessing a Service Worker...

5CVSS7.2AI score0.0157EPSS
Exploits1References3
FreeBSD
FreeBSD
added 2015/09/01 12:0 a.m.44 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 29 security fixes in this release, including: 516377 High CVE-2015-1291: Cross-origin bypass in DOM. Credit to anonymous. 522791 High CVE-2015-1292: Cross-origin bypass in ServiceWorker. Credit to Mariusz Mlynski. 524074 High CVE-2015-1293: Cross-origin bypass in...

7.5CVSS8.7AI score0.0224EPSS
Exploits2References1
Rows per page
Query Builder