NA
CVSSv3

CVE-2009-0276

CVSSv4: NA | CVSSv3: NA | CVSSv2: 5 | VMScore: 600 | EPSS: 0.00364 | KEV: Not Included
Published: 03/02/2009 Updated: 21/11/2024

Vulnerability Summary

Cross-domain vulnerability in the V8 JavaScript engine in Google Chrome prior to 1.0.154.46 allows remote malicious users to bypass the Same Origin Policy via a crafted script that accesses another frame and reads its full URL and possibly other sensitive information, or modifies the URL of this frame.

Vulnerable Product Search on Vulmon Subscribe to Product

google chrome

google chrome 0.2.152.1

google chrome 0.2.153.1

google chrome 0.3.154.0

google chrome 0.3.154.3

google chrome 0.4.154.18

google chrome 0.4.154.22

google chrome 0.4.154.31

google chrome 0.4.154.33

google chrome 1.0.154.36

google chrome 1.0.154.39

google chrome 1.0.154.42