Описание
The Extensions subsystem in Google Chrome before 49.0.2623.75 does not properly maintain own properties, which allows remote attackers to bypass intended access restrictions via crafted JavaScript code that triggers an incorrect cast, related to extensions/renderer/v8_helpers.h and gin/converter.h.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 49.0.2623.87-0ubuntu1.1232 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [49.0.2623.87-0ubuntu0.14.04.1.1112]] |
| precise | ignored | |
| trusty | released | 49.0.2623.87-0ubuntu0.14.04.1.1112 |
| trusty/esm | DNE | trusty was released [49.0.2623.87-0ubuntu0.14.04.1.1112] |
| upstream | released | 49.0.2623.75 |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE | |
| wily | released | 49.0.2623.87-0ubuntu0.15.10.1.1222 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was not-affected] |
| precise | DNE | |
| trusty | not-affected | |
| trusty/esm | DNE | trusty was not-affected |
| upstream | not-affected | |
| vivid/stable-phone-overlay | not-affected | |
| vivid/ubuntu-core | DNE | |
| wily | not-affected |
Показывать по
6.8 Medium
CVSS2
8.8 High
CVSS3
Связанные уязвимости
The Extensions subsystem in Google Chrome before 49.0.2623.75 does not properly maintain own properties, which allows remote attackers to bypass intended access restrictions via crafted JavaScript code that triggers an incorrect cast, related to extensions/renderer/v8_helpers.h and gin/converter.h.
The Extensions subsystem in Google Chrome before 49.0.2623.75 does not properly maintain own properties, which allows remote attackers to bypass intended access restrictions via crafted JavaScript code that triggers an incorrect cast, related to extensions/renderer/v8_helpers.h and gin/converter.h.
The Extensions subsystem in Google Chrome before 49.0.2623.75 does not ...
The Extensions subsystem in Google Chrome before 49.0.2623.75 does not properly maintain own properties, which allows remote attackers to bypass intended access restrictions via crafted JavaScript code that triggers an incorrect cast, related to extensions/renderer/v8_helpers.h and gin/converter.h.
Уязвимость браузера Google Chrome, позволяющая нарушителю обойти существующие ограничения доступа
6.8 Medium
CVSS2
8.8 High
CVSS3