Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2017-15419

Опубликовано: 28 авг. 2018
Источник: debian

Описание

Insufficient policy enforcement in Resource Timing API in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to infer browsing history by triggering a leaked cross-origin URL via a crafted HTML page.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
chromium-browserfixed63.0.3239.84-1package
chromium-browserend-of-lifejessiepackage
chromium-browserend-of-lifewheezypackage

Связанные уязвимости

ubuntu логотип

CVE-2017-15419

CVSS3: 6.5
ubuntu
больше 7 лет назад

Insufficient policy enforcement in Resource Timing API in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to infer browsing history by triggering a leaked cross-origin URL via a crafted HTML page.

redhat логотип

CVE-2017-15419

CVSS3: 6.5
redhat
около 8 лет назад

Insufficient policy enforcement in Resource Timing API in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to infer browsing history by triggering a leaked cross-origin URL via a crafted HTML page.

nvd логотип

CVE-2017-15419

CVSS3: 6.5
nvd
больше 7 лет назад

Insufficient policy enforcement in Resource Timing API in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to infer browsing history by triggering a leaked cross-origin URL via a crafted HTML page.

github логотип

GHSA-6376-c738-938m

CVSS3: 6.5
github
больше 3 лет назад

Insufficient policy enforcement in Resource Timing API in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to infer browsing history by triggering a leaked cross-origin URL via a crafted HTML page.

suse-cvrf логотип

openSUSE-SU-2017:3244-1

suse-cvrf
около 8 лет назад

Security update for chromium