Vulnerability Details : CVE-2015-6763
Multiple unspecified vulnerabilities in Google Chrome before 46.0.2490.71 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
Vulnerability category: Denial of service
Products affected by CVE-2015-6763
- cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2015-6763
2.73%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 91 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2015-6763
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
References for CVE-2015-6763
-
https://code.google.com/p/chromium/issues/detail?id=527423
527423 - Security: Integer overflow in open-vcdiff results in OOB read in browser process - chromium - Monorail
-
https://code.google.com/p/chromium/issues/detail?id=525763
525763 - Heap-buffer-overflow in SkCreateBitmapShader - chromium - Monorail
-
http://packetstormsecurity.com/files/134482/Google-Chrome-Integer-Overflow.html
Google Chrome Integer Overflow ≈ Packet Storm
-
http://www.securityfocus.com/bid/77071
Google Chrome 46.0.2490.71 Multiple Security Vulnerabilities
-
https://www.exploit-db.com/exploits/38763/
Google Chrome - open-vcdiff Out-of-Bounds Read in Browser Process Integer Overflow
-
https://code.google.com/p/chromium/issues/detail?id=542517
Inloggen - Google Accounts
-
https://code.google.com/p/chromium/issues/detail?id=528799
528799 - Bad-cast to icu_54::UnicodeSet from icu_54::Quantifier;rbt_pars.cpp:1105:22 - chromium - Monorail
-
https://code.google.com/p/chromium/issues/detail?id=529310
529310 - Bad-cast to CJS_EventHandler from ;PublicMethods.cpp:2026:7 - chromium - Monorail
-
https://code.google.com/p/chromium/issues/detail?id=522131
522131 - UNKNOWN in _CMapLookupCallback - chromium - Monorail
-
https://code.google.com/p/chromium/issues/detail?id=529530
529530 - Heap-use-after-free in blink::DateTimeChooserImpl::didClosePopup - chromium - Monorail
-
https://code.google.com/p/chromium/issues/detail?id=528798
528798 - Bad-cast to blink::ScriptWrappable from blink::WebGLRenderingContextBase::TypedExtensionTracker<blink::ANGLEInstancedArrays>;ScriptWrappable.h:192:32 - chromium - Monorail
-
https://code.google.com/p/chromium/issues/detail?id=516690
516690 - Security: WebUI backends inject data into random web pages (tracking bug) - chromium - Monorail
-
https://security.gentoo.org/glsa/201603-09
Chromium: Multiple vulnerabilities (GLSA 201603-09) — Gentoo security
-
http://www.ubuntu.com/usn/USN-2770-2
USN-2770-2: Oxide vulnerabilities | Ubuntu security notices
-
http://www.debian.org/security/2015/dsa-3376
Debian -- Security Information -- DSA-3376-1 chromium-browser
-
https://code.google.com/p/chromium/issues/detail?id=522128
522128 - Security: Blink passes NULL TypedArray backing stores to V8, leading to OOB R/W - chromium - Monorail
-
http://www.securitytracker.com/id/1033816
Google Chrome Multiple Bugs Let Remote Users Execute Arbitrary Code, Bypass Security Restrictions, and Obtain Potentially Sensitive Information - SecurityTracker
-
http://www.ubuntu.com/usn/USN-2770-1
USN-2770-1: Oxide vulnerabilities | Ubuntu security notices
-
https://code.google.com/p/chromium/issues/detail?id=512053
Inloggen - Google Accounts
-
https://code.google.com/p/chromium/issues/detail?id=529520
529520 - Heap-use-after-free in content::EmbeddedWorkerInstance::ReleaseProcess - chromium - Monorail
-
http://googlechromereleases.blogspot.com/2015/10/stable-channel-update.html
Chrome Releases: Stable Channel UpdatePatch;Vendor Advisory
-
http://rhn.redhat.com/errata/RHSA-2015-1912.html
RHSA-2015:1912 - Security Advisory - Red Hat Customer Portal
Jump to