CVE-2014-7939 in Chromeinfo

Zusammenfassung

von MITRE

Google Chrome before 40.0.2214.91, when the Harmony proxy in Google V8 is enabled, allows remote attackers to bypass the Same Origin Policy via crafted JavaScript code with Proxy.create and console.log calls, related to HTTP responses that lack an "X-Content-Type-Options: nosniff" header.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservieren

06.10.2014

Veröffentlichung

22.01.2015

Moderieren

akzeptiert

Eintrag

VDB-68840

CPE

bereit

EPSS

0.02563

KEV

nein

Aktivitäten

very low

Quellen

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!