Lucene search
Ubuntu.comUB:CVE-2015-1297HistorySep 03, 2015 - 12:00 a.m.
CVE-2015-1297
2015-09-0300:00:00
ubuntu.com
ubuntu.com
11
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.011 Low
EPSS
Percentile
84.5%
The WebRequest API implementation in
extensions/browser/api/web_request/web_request_api.cc in Google Chrome
before 45.0.2454.85 does not properly consider a request’s source before
accepting the request, which allows remote attackers to bypass intended
access restrictions via a crafted (1) app or (2) extension.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 14.04 | noarch | chromium-browser | < 45.0.2454.85-0ubuntu0.14.04.1.1097 | UNKNOWN |
| ubuntu | 15.04 | noarch | chromium-browser | < 45.0.2454.85-0ubuntu0.15.04.1.1181 | UNKNOWN |
| ubuntu | 15.10 | noarch | chromium-browser | < 45.0.2454.85-0ubuntu1.1198 | UNKNOWN |
Related
prion
prion
Design/Logic Flaw
2015-09-03 22:59:00
cve
cve
CVE-2015-1297
2015-09-03 22:59:00
debiancve
debiancve
CVE-2015-1297
2015-09-03 22:59:00
threatpost
threatpost
Google Chrome 45 Security Patches, Bug Bounty Awards
2015-09-02 08:48:53
nessus
nessus
Debian DSA-3351-1 : chromium-browser - security update
2015-09-04 00:00:00
RHEL 6 : chromium-browser (RHSA-2015:1712)
2015-09-17 00:00:00
openSUSE Security Update : Chromium (openSUSE-2015-595)
2015-09-22 00:00:00
chrome
chrome
Stable Channel Update
2015-09-01 00:00:00
osv
osv
chromium-browser - security update
2015-09-03 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2015-09-01 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0356)
2015-10-15 00:00:00
Debian Security Advisory DSA 3351-1 (chromium-browser - security update)
2015-09-03 00:00:00
Debian: Security Advisory (DSA-3351-1)
2015-09-02 00:00:00
redhat
redhat
(RHSA-2015:1712) Important: chromium-browser security update
2015-09-03 00:00:00
mageia
mageia
Updated chromium-browser packages fix security vulnerabilities
2015-09-08 20:55:59
archlinux
archlinux
chromium: multiple issues
2015-09-02 00:00:00
debian
debian
[SECURITY] [DSA 3351-1] chromium-browser security update
2015-09-03 22:10:19
[SECURITY] [DSA 3351-1] chromium-browser security update
2015-09-03 22:10:19
kaspersky
kaspersky
KLA10655 Multiple vulnerabilities in Google Chrome
2015-09-01 00:00:00
gentoo
gentoo
Chromium: Multiple vulnerabilities
2016-03-12 00:00:00
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.011 Low
EPSS
Percentile
84.5%
Related for UB:CVE-2015-1297