CVE-2015-6784 : The page serializer in Google Chrome before 47.0.2526.73 mishandles Mark of the Web (MOTW) comments for URLs containing

The page serializer in Google Chrome before 47.0.2526.73 mishandles Mark of the Web (MOTW) comments for URLs containing a "--" sequence, which might allow remote attackers to inject HTML via a crafted URL, as demonstrated by an initial http://example.com?-- substring.

Published 2015-12-06 01:59:21

Updated 2017-09-14 01:29:03

Source Google Inc.

View at NVD, CVE.org

Vulnerability category: Input validation

Exploit prediction scoring system (EPSS) score for CVE-2015-6784

Probability of exploitation activity in the next 30 days: 0.53%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 74 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2015-6784

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.3	MEDIUM	AV:N/AC:M/Au:N/C:N/I:P/A:N	8.6	2.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: None

CWE ids for CVE-2015-6784

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2015-6784

http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00017.html

[security-announce] openSUSE-SU-2015:2291-1: important: Security update

CVEs referencing this url
http://www.securityfocus.com/bid/78416

Google Chrome Prior to 47.0.2526.73 Multiple Security Vulnerabilities

CVEs referencing this url
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00016.html

[security-announce] openSUSE-SU-2015:2290-1: important: Security update

CVEs referencing this url
https://codereview.chromium.org/1371323003

Issue 1371323003: Escape "--" in the page URL at page serialization - Code Review
http://googlechromereleases.blogspot.com/2015/12/stable-channel-update.html

Chrome Releases: Stable Channel Update
Vendor Advisory

CVEs referencing this url
http://www.ubuntu.com/usn/USN-2825-1

USN-2825-1: Oxide vulnerabilities | Ubuntu security notices

CVEs referencing this url
https://code.google.com/p/chromium/issues/detail?id=503217

503217 - Security: improperly escaped "saved from url" info allows modification of saved pages - chromium - Monorail
https://security.gentoo.org/glsa/201603-09

Chromium: Multiple vulnerabilities (GLSA 201603-09) — Gentoo security

CVEs referencing this url
http://www.securitytracker.com/id/1034298

Google Chrome Multiple Bugs Let Remote Users Execute Arbitrary Code, Bypass Security Restrictions, and Spoof Content - SecurityTracker

CVEs referencing this url
http://www.debian.org/security/2015/dsa-3415

Debian -- Security Information -- DSA-3415-1 chromium-browser

CVEs referencing this url

Products affected by CVE-2015-6784

Google » Chrome
Versions up to, including, (<=) 46.0.2490.86
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2015-6784

Exploit prediction scoring system (EPSS) score for CVE-2015-6784

CVSS scores for CVE-2015-6784

CWE ids for CVE-2015-6784

References for CVE-2015-6784

Products affected by CVE-2015-6784