Описание
XSS Auditor in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed detection of a blocked iframe load, which allowed a remote attacker to brute force JavaScript variables via a crafted HTML page.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 57.0.2987.98-0ubuntu1.1348 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [58.0.3029.81-0ubuntu0.14.04.1172]] |
| precise | ignored | |
| precise/esm | DNE | precise was ignored |
| trusty | released | 58.0.3029.81-0ubuntu0.14.04.1172 |
| trusty/esm | DNE | trusty was released [58.0.3029.81-0ubuntu0.14.04.1172] |
| upstream | released | 57.0.2987.98 |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE | |
| xenial | released | 57.0.2987.98-0ubuntu0.16.04.1276 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 1.21.5-0ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [1.21.5-0ubuntu0.14.04.1]] |
| esm-infra/xenial | released | 1.21.5-0ubuntu0.16.04.1 |
| precise | DNE | |
| precise/esm | DNE | |
| trusty | released | 1.21.5-0ubuntu0.14.04.1 |
| trusty/esm | DNE | trusty was released [1.21.5-0ubuntu0.14.04.1] |
| upstream | released | 1.21.5 |
| vivid/stable-phone-overlay | ignored | end of life |
| vivid/ubuntu-core | DNE |
Показывать по
EPSS
4.3 Medium
CVSS2
6.1 Medium
CVSS3
Связанные уязвимости
XSS Auditor in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed detection of a blocked iframe load, which allowed a remote attacker to brute force JavaScript variables via a crafted HTML page.
XSS Auditor in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed detection of a blocked iframe load, which allowed a remote attacker to brute force JavaScript variables via a crafted HTML page.
XSS Auditor in Google Chrome prior to 57.0.2987.98 for Mac, Windows, a ...
XSS Auditor in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed detection of a blocked iframe load, which allowed a remote attacker to brute force JavaScript variables via a crafted HTML page.
EPSS
4.3 Medium
CVSS2
6.1 Medium
CVSS3