Vulnerability Details : CVE-2015-6784
The page serializer in Google Chrome before 47.0.2526.73 mishandles Mark of the Web (MOTW) comments for URLs containing a "--" sequence, which might allow remote attackers to inject HTML via a crafted URL, as demonstrated by an initial http://example.com?-- substring.
Vulnerability category: Input validation
Exploit prediction scoring system (EPSS) score for CVE-2015-6784
Probability of exploitation activity in the next 30 days: 0.53%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 74 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2015-6784
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
4.3
|
MEDIUM | AV:N/AC:M/Au:N/C:N/I:P/A:N |
8.6
|
2.9
|
NIST |
CWE ids for CVE-2015-6784
-
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.Assigned by: nvd@nist.gov (Primary)
References for CVE-2015-6784
-
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00017.html
[security-announce] openSUSE-SU-2015:2291-1: important: Security update
-
http://www.securityfocus.com/bid/78416
Google Chrome Prior to 47.0.2526.73 Multiple Security Vulnerabilities
-
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00016.html
[security-announce] openSUSE-SU-2015:2290-1: important: Security update
-
https://codereview.chromium.org/1371323003
Issue 1371323003: Escape "--" in the page URL at page serialization - Code Review
-
http://googlechromereleases.blogspot.com/2015/12/stable-channel-update.html
Chrome Releases: Stable Channel UpdateVendor Advisory
-
http://www.ubuntu.com/usn/USN-2825-1
USN-2825-1: Oxide vulnerabilities | Ubuntu security notices
-
https://code.google.com/p/chromium/issues/detail?id=503217
503217 - Security: improperly escaped "saved from url" info allows modification of saved pages - chromium - Monorail
-
https://security.gentoo.org/glsa/201603-09
Chromium: Multiple vulnerabilities (GLSA 201603-09) — Gentoo security
-
http://www.securitytracker.com/id/1034298
Google Chrome Multiple Bugs Let Remote Users Execute Arbitrary Code, Bypass Security Restrictions, and Spoof Content - SecurityTracker
-
http://www.debian.org/security/2015/dsa-3415
Debian -- Security Information -- DSA-3415-1 chromium-browser
Products affected by CVE-2015-6784
- cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*