Published: 06/12/2015 Updated: 07/11/2023

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

The Document::open function in WebKit/Source/core/dom/Document.cpp in Google Chrome prior to 47.0.2526.73 does not ensure that page-dismissal event handling is compatible with modal-dialog blocking, which makes it easier for remote malicious users to spoof Omnibox content via a crafted web site.

Vulnerable Product	Search on Vulmon	Subscribe to Product
google chrome

Synopsis Critical: chromium-browser security update Type/Severity Security Advisory: Critical Topic Updated chromium-browser packages that fix multiple security issues are nowavailable for Red Hat Enterprise Linux 6 SupplementaryRed Hat Product Security has rated this update as having Critical securityimpa ...

Several security issues were fixed in Oxide ...

Several vulnerabilities have been discovered in the chromium web browser CVE-2015-1302 Rub Wu discovered an information leak in the pdfium library CVE-2015-6764 Guang Gong discovered an out-of-bounds read issue in the v8 javascript library CVE-2015-6765 A use-after-free issue was discovered in AppCache CVE-2015-6766 A use-a ...

The Document::open function in WebKit/Source/core/dom/Documentcpp in Google Chrome before 470252673 does not ensure that page-dismissal event handling is compatible with modal-dialog blocking, which makes it easier for remote attackers to spoof Omnibox content via a crafted web site ...

CWE-20 http://googlechromereleases.blogspot.com/2015/12/stable-channel-update.html http://www.ubuntu.com/usn/USN-2825-1 https://code.google.com/p/chromium/issues/detail?id=536652 http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00016.html https://security.gentoo.org/glsa/201603-09 http://www.securityfocus.com/bid/78416 http://www.debian.org/security/2015/dsa-3415 http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00017.html https://codereview.chromium.org/1415773002/http://www.securitytracker.com/id/1034298 https://access.redhat.com/errata/RHSA-2015:2545 https://usn.ubuntu.com/2825-1/https://nvd.nist.gov https://access.redhat.com/security/cve/cve-2015-6782

CVE-2015-6782

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect