CVE-2016-9652 : Multiple unspecified vulnerabilities in Google Chrome before 55.0.2883.75.

Multiple unspecified vulnerabilities in Google Chrome before 55.0.2883.75.

Published 2019-11-20 15:15:12

Updated 2020-02-07 21:15:10

Source Google Inc.

View at NVD, CVE.org

Products affected by CVE-2016-9652

Google » Chrome
Versions before (<) 55.0.2883.75
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2016-9652

EPSS FAQ

1.23%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 77 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2016-9652

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
10.0	HIGH	AV:N/AC:L/Au:N/C:C/I:C/A:C	10.0	10.0	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete
9.8	CRITICAL	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	3.9	5.9	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

References for CVE-2016-9652

http://lists.opensuse.org/opensuse-security-announce/2017-02/msg00042.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZZECS3A7ULG4B4YXBKUZMA3NTQBE5HGU/

[SECURITY] Fedora 24 Update: chromium-55.0.2883.87-1.fc24 - package-announce - Fedora Mailing-Lists
http://www.ubuntu.com/usn/USN-3153-1

USN-3153-1: Oxide vulnerabilities | Ubuntu security notices | Ubuntu
http://www.securityfocus.com/bid/94633

Google Chrome Prior to 55.0.2883.75 Multiple Security Vulnerabilities

CVEs referencing this url
http://www.debian.org/security/2016/dsa-3731

Debian -- Security Information -- DSA-3731-1 chromium-browser
http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00050.html

[security-announce] openSUSE-SU-2016:3108-1: important: Security update for Chromium - openSUSE Security Announce - openSUSE Mailing Lists
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LV2U7SINGF3SBK7HVKSWFOYLQBUH6PUE/

[SECURITY] Fedora 24 Update: qt5-qtwebengine-5.6.3-0.1.20170712gitee719ad313e564.fc24 - package-announce - Fedora Mailing-Lists
http://rhn.redhat.com/errata/RHSA-2016-2919.html

RHSA-2016:2919 - Security Advisory - Red Hat Customer Portal

CVEs referencing this url
https://bugs.chromium.org/p/chromium/issues/detail?id=669928

669928 - Tracking bug for internal fixes: Chrome M55, release 0
https://chromereleases.googleblog.com/2016/12/stable-channel-update-for-desktop.html

Chrome Releases: Stable Channel Update for Desktop
Vendor Advisory

CVEs referencing this url
https://security.gentoo.org/glsa/201612-11

Chromium: Multiple vulnerabilities (GLSA 201612-11) — Gentoo security

CVEs referencing this url
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7LGZO2VOGJOZUUXNQITD6YMIUQ2L5GTU/

[SECURITY] Fedora 25 Update: chromium-55.0.2883.87-1.fc25 - package-announce - Fedora Mailing-Lists

Jump to

Vulnerability Details : CVE-2016-9652

Products affected by CVE-2016-9652

Exploit prediction scoring system (EPSS) score for CVE-2016-9652

CVSS scores for CVE-2016-9652

References for CVE-2016-9652