Описание
Google Chrome before 25.0.1364.152 does not properly manage the interaction between the browser process and renderer processes during authorization of the loading of a plug-in, which makes it easier for remote attackers to bypass intended access restrictions via vectors involving a blocked plug-in.
Ссылки
Уязвимые конфигурации
Конфигурация 1Версия до 25.0.1364.126 (включая)
Одно из
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.0:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.1:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.2:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.3:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.5:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.7:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.8:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.9:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.10:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.11:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.12:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.13:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.14:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.15:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.16:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.17:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.18:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.19:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.20:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.21:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.22:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.23:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.24:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.25:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.26:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.27:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.28:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.29:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.30:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.31:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.32:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.33:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.34:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.35:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.36:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.37:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.38:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.39:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.40:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.41:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.42:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.43:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.44:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.45:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.46:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.47:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.48:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.49:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.50:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.51:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.52:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.53:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.54:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.55:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.56:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.57:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.58:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.61:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.62:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.63:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.65:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.66:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.67:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.68:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.70:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.72:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.73:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.74:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.75:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.76:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.77:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.78:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.79:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.80:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.81:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.82:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.84:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.85:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.86:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.87:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.88:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.89:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.90:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.91:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.92:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.93:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.95:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.98:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.99:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.108:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.110:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.112:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.113:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.114:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.115:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.116:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.117:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.118:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.119:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.120:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.121:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.122:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.123:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.124:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:25.0.1364.125:*:*:*:*:*:*:*
EPSS
Процентиль: 58%
0.0036
Низкий
7.5 High
CVSS2
Дефекты
CWE-287
Связанные уязвимости
ubuntu
почти 13 лет назад
Google Chrome before 25.0.1364.152 does not properly manage the interaction between the browser process and renderer processes during authorization of the loading of a plug-in, which makes it easier for remote attackers to bypass intended access restrictions via vectors involving a blocked plug-in.
debian
почти 13 лет назад
Google Chrome before 25.0.1364.152 does not properly manage the intera ...
github
больше 3 лет назад
Google Chrome before 25.0.1364.152 does not properly manage the interaction between the browser process and renderer processes during authorization of the loading of a plug-in, which makes it easier for remote attackers to bypass intended access restrictions via vectors involving a blocked plug-in.
EPSS
Процентиль: 58%
0.0036
Низкий
7.5 High
CVSS2
Дефекты
CWE-287