CVE-2015-1296 : The UnescapeURLWithAdjustmentsImpl implementation in net/base/escape.cc in Googl

The UnescapeURLWithAdjustmentsImpl implementation in net/base/escape.cc in Google Chrome before 45.0.2454.85 does not prevent display of Unicode LOCK characters in the omnibox, which makes it easier for remote attackers to spoof the SSL lock icon by placing one of these characters at the end of a URL, as demonstrated by the omnibox in localizations for right-to-left languages.

Published 2015-09-03 22:59:07

Updated 2025-04-12 10:46:41

Source Chrome

View at NVD, CVE.org

Products affected by CVE-2015-1296

Google » Chrome
Versions up to, including, (<=) 44.0.2403
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2015-1296

EPSS FAQ

0.78%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 71 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2015-1296

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
5.0	MEDIUM	AV:N/AC:L/Au:N/C:N/I:P/A:N	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: None

CWE ids for CVE-2015-1296

CWE-254

Assigned by: nvd@nist.gov (Primary)

References for CVE-2015-1296

http://www.securitytracker.com/id/1033472

Google Chrome Multiple Bugs Let Remote Users Execute Arbitrary Code, Bypass Security Restrictions, Obtain Potentially Sensitive Information, and Spoof Content - SecurityTracker

CVEs referencing this url
https://code.google.com/p/chromium/issues/detail?id=421332

421332 - Security: Completely spoofable origin, including lock sign - chromium - Monorail
http://lists.opensuse.org/opensuse-updates/2015-11/msg00013.html

openSUSE-SU-2015:1873-1: moderate: Security update for Chromium

CVEs referencing this url
https://codereview.chromium.org/1189553002/

Issue 1189553002: Omnibox: Force text field to LTR context if it is a URL. - Code Review
http://rhn.redhat.com/errata/RHSA-2015-1712.html

RHSA-2015:1712 - Security Advisory - Red Hat Customer Portal

CVEs referencing this url
http://googlechromereleases.blogspot.com/2015/09/stable-channel-update.html

Chrome Releases: Stable Channel Update

CVEs referencing this url
http://lists.opensuse.org/opensuse-updates/2015-09/msg00029.html

openSUSE-SU-2015:1586-1: moderate: Security update for Chromium

CVEs referencing this url
https://security.gentoo.org/glsa/201603-09

Chromium: Multiple vulnerabilities (GLSA 201603-09) — Gentoo security

CVEs referencing this url
https://codereview.chromium.org/1180393003/

Issue 1180393003: Added characters that look like padlocks to URL unescaping blacklist. - Code Review
http://www.debian.org/security/2015/dsa-3351

Debian -- Security Information -- DSA-3351-1 chromium-browser

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2015-1296

Products affected by CVE-2015-1296

Exploit prediction scoring system (EPSS) score for CVE-2015-1296

CVSS scores for CVE-2015-1296

CWE ids for CVE-2015-1296

References for CVE-2015-1296