Описание
The extension implementation in Google Chrome before 17.0.963.46 does not properly handle sandboxed origins, which might allow remote attackers to bypass the Same Origin Policy via a crafted extension.
Ссылки
Уязвимые конфигурации
Конфигурация 1Версия до 17.0.963.46 (исключая)
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
EPSS
Процентиль: 29%
0.00104
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-346
Связанные уязвимости
ubuntu
почти 14 лет назад
The extension implementation in Google Chrome before 17.0.963.46 does not properly handle sandboxed origins, which might allow remote attackers to bypass the Same Origin Policy via a crafted extension.
debian
почти 14 лет назад
The extension implementation in Google Chrome before 17.0.963.46 does ...
github
больше 3 лет назад
The extension implementation in Google Chrome before 17.0.963.46 does not properly handle sandboxed origins, which might allow remote attackers to bypass the Same Origin Policy via a crafted extension.
EPSS
Процентиль: 29%
0.00104
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-346