Уязвимость CVE-2016-1622

Пакет	Статус	Версия исправления	Релиз	Тип
chromium-browser	fixed	48.0.2564.116-1		package
chromium-browser	end-of-life		wheezy	package
chromium-browser	end-of-life		squeeze	package

CVE-2016-1622

CVSS3: 8.8

ubuntu

почти 10 лет назад

The Extensions subsystem in Google Chrome before 48.0.2564.109 does not prevent use of the Object.defineProperty method to override intended extension behavior, which allows remote attackers to bypass the Same Origin Policy via crafted JavaScript code.

CVE-2016-1622

redhat

почти 10 лет назад

The Extensions subsystem in Google Chrome before 48.0.2564.109 does not prevent use of the Object.defineProperty method to override intended extension behavior, which allows remote attackers to bypass the Same Origin Policy via crafted JavaScript code.

CVE-2016-1622

CVSS3: 8.8

nvd

почти 10 лет назад

The Extensions subsystem in Google Chrome before 48.0.2564.109 does not prevent use of the Object.defineProperty method to override intended extension behavior, which allows remote attackers to bypass the Same Origin Policy via crafted JavaScript code.

GHSA-4h9w-599p-58j9

CVSS3: 8.8

github

больше 3 лет назад

The Extensions subsystem in Google Chrome before 48.0.2564.109 does not prevent use of the Object.defineProperty method to override intended extension behavior, which allows remote attackers to bypass the Same Origin Policy via crafted JavaScript code.

BDU:2016-00534

fstec

почти 10 лет назад

Уязвимость браузера Google Chrome, позволяющая нарушителю обойти существующую политику ограничения доступа

exploitDog

CVE-2016-1622

Описание

Пакеты

Связанные уязвимости