exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 9

CVE-2016-1636

почти 10 лет назад

The PendingScript::notifyFinished function in WebKit/Source/core/dom/PendingScript.cpp in Google Chrome before 49.0.2623.75 relies on memory-cache information about integrity-check occurrences instead of integrity-check successes, which allows remote attackers to bypass the Subresource Integrity (aka SRI) protection mechanism by triggering two loads of the same resource.

CVSS3: 9.8

EPSS: Низкий

CVE-2016-1636

почти 10 лет назад

CVSS2: 6.8

EPSS: Низкий

CVE-2016-1636

почти 10 лет назад

CVSS3: 9.8

EPSS: Низкий

CVE-2016-1636

почти 10 лет назад

The PendingScript::notifyFinished function in WebKit/Source/core/dom/P ...

CVSS3: 9.8

EPSS: Низкий

GHSA-ffvj-r26r-x2p8

больше 3 лет назад

CVSS3: 9.8

EPSS: Низкий

BDU:2016-00647

почти 10 лет назад

Уязвимость браузера Google Chrome, позволяющая нарушителю обойти механизмы защиты целостности Subresource

CVSS2: 7.5

EPSS: Низкий

openSUSE-SU-2016:0664-1

почти 10 лет назад

Security update for Chromium

EPSS: Низкий

SUSE-SU-2016:0665-1

почти 10 лет назад

Security update for Chromium

EPSS: Низкий

SUSE-SU-2016:0664-1

почти 10 лет назад

Security update for Chromium

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2016-1636 The PendingScript::notifyFinished function in WebKit/Source/core/dom/PendingScript.cpp in Google Chrome before 49.0.2623.75 relies on memory-cache information about integrity-check occurrences instead of integrity-check successes, which allows remote attackers to bypass the Subresource Integrity (aka SRI) protection mechanism by triggering two loads of the same resource.	CVSS3: 9.8	1% Низкий	почти 10 лет назад
CVE-2016-1636 The PendingScript::notifyFinished function in WebKit/Source/core/dom/PendingScript.cpp in Google Chrome before 49.0.2623.75 relies on memory-cache information about integrity-check occurrences instead of integrity-check successes, which allows remote attackers to bypass the Subresource Integrity (aka SRI) protection mechanism by triggering two loads of the same resource.	CVSS2: 6.8	1% Низкий	почти 10 лет назад
CVE-2016-1636 The PendingScript::notifyFinished function in WebKit/Source/core/dom/PendingScript.cpp in Google Chrome before 49.0.2623.75 relies on memory-cache information about integrity-check occurrences instead of integrity-check successes, which allows remote attackers to bypass the Subresource Integrity (aka SRI) protection mechanism by triggering two loads of the same resource.	CVSS3: 9.8	1% Низкий	почти 10 лет назад
CVE-2016-1636 The PendingScript::notifyFinished function in WebKit/Source/core/dom/P ...	CVSS3: 9.8	1% Низкий	почти 10 лет назад
GHSA-ffvj-r26r-x2p8 The PendingScript::notifyFinished function in WebKit/Source/core/dom/PendingScript.cpp in Google Chrome before 49.0.2623.75 relies on memory-cache information about integrity-check occurrences instead of integrity-check successes, which allows remote attackers to bypass the Subresource Integrity (aka SRI) protection mechanism by triggering two loads of the same resource.	CVSS3: 9.8	1% Низкий	больше 3 лет назад
BDU:2016-00647 Уязвимость браузера Google Chrome, позволяющая нарушителю обойти механизмы защиты целостности Subresource	CVSS2: 7.5	1% Низкий	почти 10 лет назад
openSUSE-SU-2016:0664-1 Security update for Chromium			почти 10 лет назад
SUSE-SU-2016:0665-1 Security update for Chromium			почти 10 лет назад
SUSE-SU-2016:0664-1 Security update for Chromium			почти 10 лет назад

Уязвимостей на страницу