Количество 8
Количество 8
CVE-2016-1692
WebKit/Source/core/css/StyleSheetContents.cpp in Blink, as used in Google Chrome before 51.0.2704.63, permits cross-origin loading of CSS stylesheets by a ServiceWorker even when the stylesheet download has an incorrect MIME type, which allows remote attackers to bypass the Same Origin Policy via a crafted web site.
CVE-2016-1692
WebKit/Source/core/css/StyleSheetContents.cpp in Blink, as used in Google Chrome before 51.0.2704.63, permits cross-origin loading of CSS stylesheets by a ServiceWorker even when the stylesheet download has an incorrect MIME type, which allows remote attackers to bypass the Same Origin Policy via a crafted web site.
CVE-2016-1692
WebKit/Source/core/css/StyleSheetContents.cpp in Blink, as used in Google Chrome before 51.0.2704.63, permits cross-origin loading of CSS stylesheets by a ServiceWorker even when the stylesheet download has an incorrect MIME type, which allows remote attackers to bypass the Same Origin Policy via a crafted web site.
CVE-2016-1692
WebKit/Source/core/css/StyleSheetContents.cpp in Blink, as used in Goo ...
GHSA-vfrm-289v-rh7f
WebKit/Source/core/css/StyleSheetContents.cpp in Blink, as used in Google Chrome before 51.0.2704.63, permits cross-origin loading of CSS stylesheets by a ServiceWorker even when the stylesheet download has an incorrect MIME type, which allows remote attackers to bypass the Same Origin Policy via a crafted web site.
BDU:2016-01499
Уязвимость браузера Google Chrome, позволяющая нарушителю обойти существующую политику ограничения доступа
openSUSE-SU-2016:1433-1
Security update for Chromium
openSUSE-SU-2016:1430-1
Security update for Chromium
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2016-1692 WebKit/Source/core/css/StyleSheetContents.cpp in Blink, as used in Google Chrome before 51.0.2704.63, permits cross-origin loading of CSS stylesheets by a ServiceWorker even when the stylesheet download has an incorrect MIME type, which allows remote attackers to bypass the Same Origin Policy via a crafted web site. | CVSS3: 5.3 | 1% Низкий | больше 9 лет назад |
 | CVE-2016-1692 WebKit/Source/core/css/StyleSheetContents.cpp in Blink, as used in Google Chrome before 51.0.2704.63, permits cross-origin loading of CSS stylesheets by a ServiceWorker even when the stylesheet download has an incorrect MIME type, which allows remote attackers to bypass the Same Origin Policy via a crafted web site. | CVSS2: 4.3 | 1% Низкий | больше 9 лет назад |
 | CVE-2016-1692 WebKit/Source/core/css/StyleSheetContents.cpp in Blink, as used in Google Chrome before 51.0.2704.63, permits cross-origin loading of CSS stylesheets by a ServiceWorker even when the stylesheet download has an incorrect MIME type, which allows remote attackers to bypass the Same Origin Policy via a crafted web site. | CVSS3: 5.3 | 1% Низкий | больше 9 лет назад |
| CVE-2016-1692 WebKit/Source/core/css/StyleSheetContents.cpp in Blink, as used in Goo ... | CVSS3: 5.3 | 1% Низкий | больше 9 лет назад |
| GHSA-vfrm-289v-rh7f WebKit/Source/core/css/StyleSheetContents.cpp in Blink, as used in Google Chrome before 51.0.2704.63, permits cross-origin loading of CSS stylesheets by a ServiceWorker even when the stylesheet download has an incorrect MIME type, which allows remote attackers to bypass the Same Origin Policy via a crafted web site. | CVSS3: 5.3 | 1% Низкий | больше 3 лет назад |
 | BDU:2016-01499 Уязвимость браузера Google Chrome, позволяющая нарушителю обойти существующую политику ограничения доступа | CVSS2: 4.3 | 1% Низкий | больше 9 лет назад |
 | openSUSE-SU-2016:1433-1 Security update for Chromium | больше 9 лет назад | ||
| openSUSE-SU-2016:1430-1 Security update for Chromium | больше 9 лет назад |
Уязвимостей на страницу