Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2017-15419

Опубликовано: 06 дек. 2017
Источник: redhat
CVSS3: 6.5

Описание

Insufficient policy enforcement in Resource Timing API in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to infer browsing history by triggering a leaked cross-origin URL via a crafted HTML page.

Ссылки на источники

Дополнительная информация

Статус:

Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=1523134chromium-browser: cross origin leak of redirect url in blink

6.5 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2017-15419

CVSS3: 6.5
ubuntu
больше 7 лет назад

Insufficient policy enforcement in Resource Timing API in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to infer browsing history by triggering a leaked cross-origin URL via a crafted HTML page.

nvd логотип

CVE-2017-15419

CVSS3: 6.5
nvd
больше 7 лет назад

Insufficient policy enforcement in Resource Timing API in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to infer browsing history by triggering a leaked cross-origin URL via a crafted HTML page.

debian логотип

CVE-2017-15419

CVSS3: 6.5
debian
больше 7 лет назад

Insufficient policy enforcement in Resource Timing API in Google Chrom ...

github логотип

GHSA-6376-c738-938m

CVSS3: 6.5
github
больше 3 лет назад

Insufficient policy enforcement in Resource Timing API in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to infer browsing history by triggering a leaked cross-origin URL via a crafted HTML page.

suse-cvrf логотип

openSUSE-SU-2017:3244-1

suse-cvrf
около 8 лет назад

Security update for chromium

6.5 Medium

CVSS3