Published: 11/09/2016 Updated: 07/11/2023

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Google Chrome prior to 53.0.2785.89 on Windows and OS X and prior to 53.0.2785.92 on Linux does not properly validate access to the initial document, which allows remote malicious users to spoof the address bar via a crafted web site.

Vulnerable Product	Search on Vulmon	Subscribe to Product
google chrome
opensuse leap 42.1

Several security issues were fixed in Oxide ...

Several vulnerabilities have been discovered in the chromium web browser CVE-2016-5147 A cross-site scripting issue was discovered CVE-2016-5148 Another cross-site scripting issue was discovered CVE-2016-5149 Max Justicz discovered a script injection issue in extension handling CVE-2016-5150 A use-after-free issue was discovere ...

Google Chrome before 530278589 on Windows and OS X and before 530278592 on Linux does not properly validate access to the initial document, which allows remote attackers to spoof the address bar via a crafted web site ...

Chromium does not properly validate access to the initial document, which allows remote attackers to spoof the address bar via a crafted web site ...

CWE-254 https://crbug.com/630662 http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00003.html https://googlechromereleases.blogspot.com/2016/08/stable-channel-update-for-desktop_31.html http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00004.html http://www.securityfocus.com/bid/92717 https://codereview.chromium.org/2209303002 http://www.securitytracker.com/id/1036729 http://lists.opensuse.org/opensuse-updates/2016-09/msg00073.html http://www.debian.org/security/2016/dsa-3660 https://security.gentoo.org/glsa/201610-09 http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00008.html https://codereview.chromium.org/2177233002/http://rhn.redhat.com/errata/RHSA-2016-1854.html https://usn.ubuntu.com/3058-1/https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2016-5155

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect