CVE-2016-5132 in ChromeИнформация

Сводка

по MITRE

The Service Workers subsystem in Google Chrome before 52.0.2743.82 does not properly implement the Secure Contexts specification during decisions about whether to control a subframe, which allows remote attackers to bypass the Same Origin Policy via an https IFRAME element inside an http IFRAME element.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Резервировать

31.05.2016

Раскрытие

23.07.2016

Модерация

принято

Вход

VDB-90240

EPSS

0.01465

KEV

Нет

Деятельности

Очень низкий

Источники

Might our Artificial Intelligence support you?

Check our Alexa App!