Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2016-1696

Опубликовано: 05 июн. 2016
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 6.8
CVSS3: 8.8

Описание

The extensions subsystem in Google Chrome before 51.0.2704.79 does not properly restrict bindings access, which allows remote attackers to bypass the Same Origin Policy via unspecified vectors.

РелизСтатусПримечание
devel

released

51.0.2704.79-0ubuntu2~cm1
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [51.0.2704.79-0ubuntu0.14.04.1.1121]]
precise

ignored

trusty

released

51.0.2704.79-0ubuntu0.14.04.1.1121
trusty/esm

DNE

trusty was released [51.0.2704.79-0ubuntu0.14.04.1.1121]
upstream

released

51.0.2704.79
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

wily

ignored

end of life
xenial

released

51.0.2704.79-0ubuntu0.16.04.1.1242

Показывать по

РелизСтатусПримечание
devel

not-affected

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was not-affected]
esm-infra/xenial

not-affected

precise

DNE

trusty

not-affected

trusty/esm

DNE

trusty was not-affected
upstream

not-affected

vivid/stable-phone-overlay

not-affected

vivid/ubuntu-core

DNE

wily

not-affected

Показывать по

Ссылки на источники

EPSS

Процентиль: 76%
0.00981
Низкий

6.8 Medium

CVSS2

8.8 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2016-1696

redhat
больше 9 лет назад

The extensions subsystem in Google Chrome before 51.0.2704.79 does not properly restrict bindings access, which allows remote attackers to bypass the Same Origin Policy via unspecified vectors.

nvd логотип

CVE-2016-1696

CVSS3: 8.8
nvd
больше 9 лет назад

The extensions subsystem in Google Chrome before 51.0.2704.79 does not properly restrict bindings access, which allows remote attackers to bypass the Same Origin Policy via unspecified vectors.

debian логотип

CVE-2016-1696

CVSS3: 8.8
debian
больше 9 лет назад

The extensions subsystem in Google Chrome before 51.0.2704.79 does not ...

github логотип

GHSA-3r8m-9qvw-p5fw

CVSS3: 8.8
github
больше 3 лет назад

The extensions subsystem in Google Chrome before 51.0.2704.79 does not properly restrict bindings access, which allows remote attackers to bypass the Same Origin Policy via unspecified vectors.

fstec логотип

BDU:2016-01495

fstec
больше 9 лет назад

Уязвимость браузера Google Chrome, позволяющая нарушителю обойти существующую политику ограничения доступа

EPSS

Процентиль: 76%
0.00981
Низкий

6.8 Medium

CVSS2

8.8 High

CVSS3