Lucene search

K
ubuntucveUbuntu.comUB:CVE-2016-5217
HistoryJan 19, 2017 - 12:00 a.m.

CVE-2016-5217

2017-01-1900:00:00
ubuntu.com
ubuntu.com
6

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.005 Low

EPSS

Percentile

75.8%

The extensions API in Google Chrome prior to 55.0.2883.75 for Mac, Windows
and Linux, and 55.0.2883.84 for Android incorrectly permitted access to
privileged plugins, which allowed a remote attacker to bypass site
isolation via a crafted HTML page.

OSVersionArchitecturePackageVersionFilename
ubuntu16.04noarchchromium-browser< 55.0.2883.87-0ubuntu0.16.04.1263UNKNOWN
ubuntu16.10noarchchromium-browser< 55.0.2883.87-0ubuntu0.16.10.1328UNKNOWN
ubuntu17.04noarchchromium-browser< 55.0.2883.87-0ubuntu1UNKNOWN

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.005 Low

EPSS

Percentile

75.8%

Related for UB:CVE-2016-5217