CVE-2015-1303 in Chromeinfo

Summary

bindings/core/v8/V8DOMWrapper.h in Blink, as used in Google Chrome before 45.0.2454.101, does not perform a rethrow action to propagate information about a cross-context exception, which allows remote attackers to bypass the Same Origin Policy via a crafted HTML document containing an IFRAME element.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

01/21/2015

Disclosure

10/11/2015

Moderation

VulDB entry created

Entries

VDB-78084 (1)

CPE

ready

CWE

CWE-20 (Confirmed)

CVSS

5.3

EPSS

0.01256

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2015-1303
NVD	https://nvd.nist.gov/vuln/detail/CVE-2015-1303
CVE Details	https://www.cvedetails.com/cve/CVE-2015-1303/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!