CVE-2010-2296

Опубликовано: 15 июн. 2010

Источник: nvd

CVSS2: 9.3

EPSS Низкий

Описание

The implementation of unspecified DOM methods in Google Chrome before 5.0.375.70 allows remote attackers to bypass the Same Origin Policy via unknown vectors.

Ссылки

http://code.google.com/p/chromium/issues/detail?id=39985
Vendor Advisory
http://googlechromereleases.blogspot.com/2010/06/stable-channel-update.html
Release Notes
Vendor Advisory
http://secunia.com/advisories/40072
Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12080
Third Party Advisory
http://code.google.com/p/chromium/issues/detail?id=39985
Vendor Advisory
http://googlechromereleases.blogspot.com/2010/06/stable-channel-update.html
Release Notes
Vendor Advisory
http://secunia.com/advisories/40072
Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12080
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

Версия до 5.0.375.70 (исключая)

EPSS

Процентиль: 59%

0.0039

Низкий

9.3 Critical

CVSS2

Дефекты

CWE-264

Связанные уязвимости

CVE-2010-2296

ubuntu

больше 15 лет назад

The implementation of unspecified DOM methods in Google Chrome before 5.0.375.70 allows remote attackers to bypass the Same Origin Policy via unknown vectors.

CVE-2010-2296

debian

больше 15 лет назад

The implementation of unspecified DOM methods in Google Chrome before ...

GHSA-whqf-7jvx-fq53

github

больше 3 лет назад

The implementation of unspecified DOM methods in Google Chrome before 5.0.375.70 allows remote attackers to bypass the Same Origin Policy via unknown vectors.

EPSS

Процентиль: 59%

0.0039

Низкий

9.3 Critical

CVSS2

Дефекты

CWE-264