exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 6

CVE-2015-1268

больше 10 лет назад

bindings/scripts/v8_types.py in Blink, as used in Google Chrome before 43.0.2357.130, does not properly select a creation context for a return value's DOM wrapper, which allows remote attackers to bypass the Same Origin Policy via crafted JavaScript code, as demonstrated by use of a data: URL.

CVSS2: 5

EPSS: Низкий

CVE-2015-1268

больше 10 лет назад

bindings/scripts/v8_types.py in Blink, as used in Google Chrome before 43.0.2357.130, does not properly select a creation context for a return value's DOM wrapper, which allows remote attackers to bypass the Same Origin Policy via crafted JavaScript code, as demonstrated by use of a data: URL.

CVSS2: 6.8

EPSS: Низкий

CVE-2015-1268

больше 10 лет назад

bindings/scripts/v8_types.py in Blink, as used in Google Chrome before 43.0.2357.130, does not properly select a creation context for a return value's DOM wrapper, which allows remote attackers to bypass the Same Origin Policy via crafted JavaScript code, as demonstrated by use of a data: URL.

CVSS2: 5

EPSS: Низкий

CVE-2015-1268

больше 10 лет назад

bindings/scripts/v8_types.py in Blink, as used in Google Chrome before ...

CVSS2: 5

EPSS: Низкий

GHSA-9h4w-j8f9-g7pr

больше 3 лет назад

bindings/scripts/v8_types.py in Blink, as used in Google Chrome before 43.0.2357.130, does not properly select a creation context for a return value's DOM wrapper, which allows remote attackers to bypass the Same Origin Policy via crafted JavaScript code, as demonstrated by use of a data: URL.

EPSS: Низкий

BDU:2015-10519

больше 10 лет назад

Уязвимость браузера Google Chrome, позволяющая нарушителю обойти ограничения доступа

CVSS2: 5

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2015-1268 bindings/scripts/v8_types.py in Blink, as used in Google Chrome before 43.0.2357.130, does not properly select a creation context for a return value's DOM wrapper, which allows remote attackers to bypass the Same Origin Policy via crafted JavaScript code, as demonstrated by use of a data: URL.	CVSS2: 5	1% Низкий	больше 10 лет назад
CVE-2015-1268 bindings/scripts/v8_types.py in Blink, as used in Google Chrome before 43.0.2357.130, does not properly select a creation context for a return value's DOM wrapper, which allows remote attackers to bypass the Same Origin Policy via crafted JavaScript code, as demonstrated by use of a data: URL.	CVSS2: 6.8	1% Низкий	больше 10 лет назад
CVE-2015-1268 bindings/scripts/v8_types.py in Blink, as used in Google Chrome before 43.0.2357.130, does not properly select a creation context for a return value's DOM wrapper, which allows remote attackers to bypass the Same Origin Policy via crafted JavaScript code, as demonstrated by use of a data: URL.	CVSS2: 5	1% Низкий	больше 10 лет назад
CVE-2015-1268 bindings/scripts/v8_types.py in Blink, as used in Google Chrome before ...	CVSS2: 5	1% Низкий	больше 10 лет назад
GHSA-9h4w-j8f9-g7pr bindings/scripts/v8_types.py in Blink, as used in Google Chrome before 43.0.2357.130, does not properly select a creation context for a return value's DOM wrapper, which allows remote attackers to bypass the Same Origin Policy via crafted JavaScript code, as demonstrated by use of a data: URL.		1% Низкий	больше 3 лет назад
BDU:2015-10519 Уязвимость браузера Google Chrome, позволяющая нарушителю обойти ограничения доступа	CVSS2: 5	1% Низкий	больше 10 лет назад

Уязвимостей на страницу