Vulnerability Details : CVE-2015-1301
Multiple unspecified vulnerabilities in Google Chrome before 45.0.2454.85 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
Vulnerability category: Denial of service
Products affected by CVE-2015-1301
- cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2015-1301
0.74%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 70 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2015-1301
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
References for CVE-2015-1301
-
https://code.google.com/p/chromium/issues/detail?id=413706
413706 - Security: Hotspot+appcache allows permanent sslstrip attack - chromium - Monorail
-
https://code.google.com/p/chromium/issues/detail?id=482369
482369 - ASSERTION FAILED: !entry->element || entry->element == element - chromium - Monorail
-
https://code.google.com/p/chromium/issues/detail?id=507018
507018 - Use-of-uninitialized-value in Browser::GetSecurityStyle - chromium - Monorail
-
http://www.securitytracker.com/id/1033472
Google Chrome Multiple Bugs Let Remote Users Execute Arbitrary Code, Bypass Security Restrictions, Obtain Potentially Sensitive Information, and Spoof Content - SecurityTracker
-
https://code.google.com/p/chromium/issues/detail?id=498475
498475 - Heap-use-after-free in blink::InspectorDebuggerAgent::removeBreakpoint - chromium - Monorail
-
https://code.google.com/p/chromium/issues/detail?id=526825
526825 - Tracking bug for internal fixes: Chrome M45, release 0 - chromium - Monorail
-
http://lists.opensuse.org/opensuse-updates/2015-11/msg00013.html
openSUSE-SU-2015:1873-1: moderate: Security update for Chromium
-
https://code.google.com/p/chromium/issues/detail?id=485413
485413 - Heap-use-after-free in ExtensionLocalizationPeer::OnCompletedRequest - chromium - Monorail
-
https://code.google.com/p/chromium/issues/detail?id=508703
508703 - Use-of-uninitialized-value in AAFillRectBatch::onCombineIfPossible - chromium - Monorail
-
https://code.google.com/p/chromium/issues/detail?id=508705
508705 - Use-of-uninitialized-value in blink::MediaQueryExp::createIfValid - chromium - Monorail
-
http://rhn.redhat.com/errata/RHSA-2015-1712.html
RHSA-2015:1712 - Security Advisory - Red Hat Customer Portal
-
https://code.google.com/p/chromium/issues/detail?id=502794
502794 - Heap-use-after-free in CFX_BaseSegmentedArray::Iterate - chromium - Monorail
-
http://googlechromereleases.blogspot.com/2015/09/stable-channel-update.html
Chrome Releases: Stable Channel Update
-
http://lists.opensuse.org/opensuse-updates/2015-09/msg00029.html
openSUSE-SU-2015:1586-1: moderate: Security update for Chromium
-
https://code.google.com/p/chromium/issues/detail?id=517364
Inloggen - Google Accounts
-
http://www.debian.org/security/2015/dsa-3351
Debian -- Security Information -- DSA-3351-1 chromium-browser
-
https://code.google.com/p/chromium/issues/detail?id=517906
517906 - Security: Installed extensions can read memory mapping information. - chromium - Monorail
-
https://code.google.com/p/chromium/issues/detail?id=498338
498338 - Security: Integer Overflow in Windows Sandbox Policy Engine String Comparison - chromium - Monorail
Jump to