CVE-2014-3166 in Chromeالمعلومات

الملخص

بحسب MITRE

The Public Key Pinning (PKP) implementation in Google Chrome before 36.0.1985.143 on Windows, OS X, and Linux, and before 36.0.1985.135 on Android, does not correctly consider the properties of SPDY connections, which allows remote attackers to obtain sensitive information by leveraging the use of multiple domain names.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

حجز

03/05/2014

إفشاء

13/08/2014

الاعتدال

تمت الموافقة

إدخال

VDB-67324

EPSS

0.01497

KEV

لا

النشاطات

منخفض جدًا

المصادر

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!