Описание
common/extensions/sync_helper.cc in Google Chrome before 28.0.1500.71 proceeds with sync operations for NPAPI extensions without checking for a certain plugin permission setting, which might allow remote attackers to trigger unwanted extension changes via unspecified vectors.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 28.0.1500.71-0ubuntu1.13.10.1 |
| lucid | ignored | end of life |
| precise | released | 28.0.1500.71-0ubuntu1.12.04.1 |
| quantal | released | 28.0.1500.71-0ubuntu1.12.10.1 |
| raring | released | 28.0.1500.71-0ubuntu1.13.04.1 |
| upstream | released | 28.0.1500.71 |
Показывать по
Ссылки на источники
EPSS
5 Medium
CVSS2
Связанные уязвимости
common/extensions/sync_helper.cc in Google Chrome before 28.0.1500.71 proceeds with sync operations for NPAPI extensions without checking for a certain plugin permission setting, which might allow remote attackers to trigger unwanted extension changes via unspecified vectors.
common/extensions/sync_helper.cc in Google Chrome before 28.0.1500.71 ...
common/extensions/sync_helper.cc in Google Chrome before 28.0.1500.71 proceeds with sync operations for NPAPI extensions without checking for a certain plugin permission setting, which might allow remote attackers to trigger unwanted extension changes via unspecified vectors.
EPSS
5 Medium
CVSS2