Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2015-8664
HistoryDec 24, 2015 - 3:59 a.m.

CVE-2015-8664

2015-12-2403:59:01
CWE-189
[email protected]
web.nvd.nist.gov
32
cve-2015-8664
integer overflow
webcursor
deserialize
google chrome
nvd

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

9.3

Confidence

High

EPSS

0.083

Percentile

94.4%

JSON

Integer overflow in the WebCursor::Deserialize function in content/common/cursors/webcursor.cc in Google Chrome before 47.0.2526.106 allows remote attackers to cause a denial of service or possibly have unspecified other impact via an RGBA pixel array with crafted dimensions, a different vulnerability than CVE-2015-6792.

Affected configurations

NVD
Node
googlechromeRange47.0.2526.80
VendorProductVersionCPE
googlechromecpe:/a:google:chrome::::

Related

openvas 9
nvd 2
prion 2
redhat 1
debiancve 2
kaspersky 1
cvelist 2
cve 1
ubuntucve 2
zdt 1
ubuntu 1
nessus 9
mageia 1
suse 2
freebsd 1
chrome 1
debian 2
osv 1
gentoo 1
openvas
openvas
Google Chrome Multiple Vulnerabilities (Jan 2016) - Mac OS X
2016-01-05 00:00:00
Google Chrome Multiple Vulnerabilities (Jan 2016) - Windows
2016-01-05 00:00:00
Google Chrome Multiple Vulnerabilities (Jan 2016) - Linux
2016-01-05 00:00:00
nvd
nvd
CVE-2015-8664
2015-12-24 03:59:01
CVE-2015-6792
2015-12-24 03:59:00
prion
prion
Design/Logic Flaw
2015-12-24 03:59:00
Integer overflow
2015-12-24 03:59:00
redhat
redhat
(RHSA-2015:2665) Important: chromium-browser security update
2015-12-17 00:00:00
debiancve
debiancve
CVE-2015-8664
2015-12-24 03:59:00
CVE-2015-6792
2015-12-24 03:59:00
kaspersky
kaspersky
KLA10722 Multiple vulnerabilities in Google Chrome
2015-12-15 00:00:00
cvelist
cvelist
CVE-2015-6792
2015-12-24 02:00:00
CVE-2015-8664
2015-12-24 02:00:00
cve
cve
CVE-2015-6792
2015-12-24 03:59:00
ubuntucve
ubuntucve
CVE-2015-6792
2015-12-24 00:00:00
CVE-2015-8664
2015-12-23 00:00:00
zdt
zdt
Google Chrome - Renderer Process to Browser Process Privilege Escalation
2015-12-18 00:00:00
ubuntu
ubuntu
Oxide vulnerabilities
2016-01-11 00:00:00
nessus
nessus
Ubuntu 14.04 LTS : Oxide vulnerabilities (USN-2860-1)
2016-01-12 00:00:00
Google Chrome < 47.0.2526.106 Multiple RCE
2015-12-16 00:00:00
RHEL 6 : chromium-browser (RHSA-2015:2665)
2015-12-18 00:00:00
mageia
mageia
Updated chromium-browser-stable packages fix CVE-2015-6792
2015-12-17 23:19:23
suse
suse
Security update for Chromium (important)
2015-12-23 15:11:00
Security update for Chromium (important)
2015-12-23 15:11:13
freebsd
freebsd
chromium -- multiple vulnerabilities
2015-12-16 00:00:00
chrome
chrome
Stable Channel Update
2015-12-15 00:00:00
debian
debian
[SECURITY] [DSA 3456-1] chromium-browser security update
2016-01-27 12:58:20
[SECURITY] [DSA 3456-1] chromium-browser security update
2016-01-27 12:58:20
osv
osv
chromium-browser - security update
2016-01-27 00:00:00
gentoo
gentoo
Chromium: Multiple vulnerabilities
2016-03-12 00:00:00

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

9.3

Confidence

High

EPSS

0.083

Percentile

94.4%

JSON
Related for CVE-2015-8664
openvas9nvd2prion2redhat1debiancve2kaspersky1cvelist2cve1ubuntucve2zdt1ubuntu1nessus9mageia1suse2freebsd1chrome1debian2osv1gentoo1