Описание
Service works could inappropriately gain access to cross origin audio in Media in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to bypass same origin policy for audio content via a crafted HTML page.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 71.0.3578.80-0ubuntu0.18.04.1 |
| cosmic | released | 71.0.3578.80-0ubuntu0.18.10.1 |
| devel | released | 71.0.3578.80-0ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was ignored [no longer updated]] |
| precise/esm | DNE | |
| trusty | ignored | end of standard support |
| trusty/esm | DNE | trusty was ignored [no longer updated] |
| upstream | released | 71.0.3578.80 |
| xenial | released | 71.0.3578.80-0ubuntu0.16.04.1 |
Показывать по
Ссылки на источники
EPSS
4.3 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
Service works could inappropriately gain access to cross origin audio in Media in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to bypass same origin policy for audio content via a crafted HTML page.
Service works could inappropriately gain access to cross origin audio in Media in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to bypass same origin policy for audio content via a crafted HTML page.
Service works could inappropriately gain access to cross origin audio ...
Service works could inappropriately gain access to cross origin audio in Media in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to bypass same origin policy for audio content via a crafted HTML page.
Уязвимость браузера Google Chrome, связанная с ошибками разграничения доступа, позволяющая нарушителю обойти существующие ограничения политики CORS
EPSS
4.3 Medium
CVSS2
6.5 Medium
CVSS3