CVE-2015-1254 : core/dom/Document.cpp in Blink, as used in Google Chrome before 43.0.2357.65, en

core/dom/Document.cpp in Blink, as used in Google Chrome before 43.0.2357.65, enables the inheritance of the designMode attribute, which allows remote attackers to bypass the Same Origin Policy by leveraging the availability of editing.

Published 2015-05-20 10:59:07

Updated 2025-04-12 10:46:41

Source Chrome

View at NVD, CVE.org

Products affected by CVE-2015-1254

Debian » Debian Linux » Version: 8.0
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
Matching versions
Google » Chrome
Versions up to, including, (<=) 42.0.2311.152
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2015-1254

EPSS FAQ

1.45%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 80 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2015-1254

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
5.0	MEDIUM	AV:N/AC:L/Au:N/C:N/I:P/A:N	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: None

CWE ids for CVE-2015-1254

CWE-264

Assigned by: nvd@nist.gov (Primary)

References for CVE-2015-1254

https://src.chromium.org/viewvc/blink?revision=192658&view=revision

[blink] Revision 192658
http://www.securityfocus.com/bid/74723

Google Chrome Prior to 43.0.2357.65 Multiple Security Vulnerabilities

CVEs referencing this url
http://www.securitytracker.com/id/1032375

Google Chrome Multiple Bugs Let Remote Users Execute Arbitrary Code, Bypass Same-Origin Restrictions, and Spoof URLs - SecurityTracker

CVEs referencing this url
http://www.debian.org/security/2015/dsa-3267

Debian -- Security Information -- DSA-3267-1 chromium-browser

CVEs referencing this url
http://googlechromereleases.blogspot.com/2015/05/stable-channel-update_19.html

Chrome Releases: Stable Channel Update

CVEs referencing this url
https://code.google.com/p/chromium/issues/detail?id=444927

444927 - Security: Inherited designMode and cross-window drag-n-drop allow to modify a cross-origin iframe's DOM - chromium - Monorail
http://lists.opensuse.org/opensuse-updates/2015-11/msg00015.html

openSUSE-SU-2015:1877-1: moderate: Security update for Chromium

CVEs referencing this url
https://security.gentoo.org/glsa/201506-04

Chromium: Multiple vulnerabilities (GLSA 201506-04) — Gentoo security

CVEs referencing this url
http://lists.opensuse.org/opensuse-updates/2015-05/msg00091.html

Object not found!

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2015-1254

Products affected by CVE-2015-1254

Exploit prediction scoring system (EPSS) score for CVE-2015-1254

CVSS scores for CVE-2015-1254

CWE ids for CVE-2015-1254

References for CVE-2015-1254