exploitDog

CVE-2015-6782

Опубликовано: 01 дек. 2015

Источник: redhat

CVSS2: 6.4

EPSS Низкий

Описание

The Document::open function in WebKit/Source/core/dom/Document.cpp in Google Chrome before 47.0.2526.73 does not ensure that page-dismissal event handling is compatible with modal-dialog blocking, which makes it easier for remote attackers to spoof Omnibox content via a crafted web site.

Ссылки на источники

Дополнительная информация

Статус:

Moderate

https://bugzilla.redhat.com/show_bug.cgi?id=1287497chromium-browser: Content spoofing in Omnibox

EPSS

Процентиль: 73%

0.00779

Низкий

6.4 Medium

CVSS2

Связанные уязвимости

CVE-2015-6782

ubuntu

около 10 лет назад

The Document::open function in WebKit/Source/core/dom/Document.cpp in Google Chrome before 47.0.2526.73 does not ensure that page-dismissal event handling is compatible with modal-dialog blocking, which makes it easier for remote attackers to spoof Omnibox content via a crafted web site.

CVE-2015-6782

nvd

около 10 лет назад

The Document::open function in WebKit/Source/core/dom/Document.cpp in Google Chrome before 47.0.2526.73 does not ensure that page-dismissal event handling is compatible with modal-dialog blocking, which makes it easier for remote attackers to spoof Omnibox content via a crafted web site.

CVE-2015-6782

debian

около 10 лет назад

The Document::open function in WebKit/Source/core/dom/Document.cpp in ...

GHSA-jh8w-c4jf-q549

github

больше 3 лет назад

The Document::open function in WebKit/Source/core/dom/Document.cpp in Google Chrome before 47.0.2526.73 does not ensure that page-dismissal event handling is compatible with modal-dialog blocking, which makes it easier for remote attackers to spoof Omnibox content via a crafted web site.

openSUSE-SU-2015:2291-1

suse-cvrf

около 10 лет назад

Security update for Chromium

EPSS

Процентиль: 73%

0.00779

Низкий

6.4 Medium

CVSS2