Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2016-5185

Опубликовано: 12 окт. 2016
Источник: redhat
CVSS3: 8.8
CVSS2: 6.8
EPSS Низкий

Описание

Blink in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux; 54.0.2840.85 for Android incorrectly allowed reentrance of FrameView::updateLifecyclePhasesInternal(), which allowed a remote attacker to perform an out of bounds memory read via crafted HTML pages.

Ссылки на источники

Дополнительная информация

Статус:

Important
https://bugzilla.redhat.com/show_bug.cgi?id=1384352chromium-browser: use after free in blink

EPSS

Процентиль: 66%
0.00512
Низкий

8.8 High

CVSS3

6.8 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2016-5185

CVSS3: 8.8
ubuntu
около 9 лет назад

Blink in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux; 54.0.2840.85 for Android incorrectly allowed reentrance of FrameView::updateLifecyclePhasesInternal(), which allowed a remote attacker to perform an out of bounds memory read via crafted HTML pages.

nvd логотип

CVE-2016-5185

CVSS3: 8.8
nvd
около 9 лет назад

Blink in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux; 54.0.2840.85 for Android incorrectly allowed reentrance of FrameView::updateLifecyclePhasesInternal(), which allowed a remote attacker to perform an out of bounds memory read via crafted HTML pages.

debian логотип

CVE-2016-5185

CVSS3: 8.8
debian
около 9 лет назад

Blink in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Lin ...

github логотип

GHSA-p7vv-6mr3-qfv8

CVSS3: 8.8
github
больше 3 лет назад

Blink in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux; 54.0.2840.85 for Android incorrectly allowed reentrance of FrameView::updateLifecyclePhasesInternal(), which allowed a remote attacker to perform an out of bounds memory read via crafted HTML pages.

EPSS

Процентиль: 66%
0.00512
Низкий

8.8 High

CVSS3

6.8 Medium

CVSS2