Описание
Google Chrome before 25.0.1364.152 does not properly manage the interaction between the browser process and renderer processes during authorization of the loading of a plug-in, which makes it easier for remote attackers to bypass intended access restrictions via vectors involving a blocked plug-in.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 25.0.1364.160-0ubuntu1 |
| hardy | DNE | |
| lucid | released | 25.0.1364.160-0ubuntu0.10.04.1 |
| oneiric | released | 25.0.1364.160-0ubuntu0.11.10.1 |
| precise | released | 25.0.1364.160-0ubuntu0.12.04.1 |
| quantal | released | 25.0.1364.160-0ubuntu0.12.10.1 |
| upstream | released | 25.0.1364.152 |
Показывать по
Ссылки на источники
EPSS
7.5 High
CVSS2
Связанные уязвимости
Google Chrome before 25.0.1364.152 does not properly manage the interaction between the browser process and renderer processes during authorization of the loading of a plug-in, which makes it easier for remote attackers to bypass intended access restrictions via vectors involving a blocked plug-in.
Google Chrome before 25.0.1364.152 does not properly manage the intera ...
Google Chrome before 25.0.1364.152 does not properly manage the interaction between the browser process and renderer processes during authorization of the loading of a plug-in, which makes it easier for remote attackers to bypass intended access restrictions via vectors involving a blocked plug-in.
EPSS
7.5 High
CVSS2