CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
Percentile
90.4%
Use-after-free vulnerability in the Pepper plugins in Google Chrome before
39.0.2171.65 allows remote attackers to cause a denial of service or
possibly have unspecified other impact via crafted Flash content that
triggers an attempted PepperMediaDeviceManager access outside of the
object’s lifetime.
Author | Note |
---|---|
alexmurray | The Debian chromium source package is called chromium-browser in Ubuntu |
mdeslaur | starting with Ubuntu 19.10, the chromium-browser package is just a script that installs the Chromium snap |