// For flags

CVE-2015-1249

chromium-browser: Various fixes from internal audits, fuzzing and other initiatives

Severity Score

7.5
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Multiple unspecified vulnerabilities in Google Chrome before 42.0.2311.90 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.

Múltiples vulnerabilidades no especificadas en Google Chrome anterior a 42.0.2311.90 permiten a atacantes causar una denegación de servicio o posiblemente tener otro impacto a través de vectores desconocidos.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
Partial
Attack Vector
Network
Attack Complexity
Medium
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2015-01-21 CVE Reserved
  • 2015-04-17 CVE Published
  • 2024-05-13 EPSS Updated
  • 2024-08-06 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-122: Heap-based Buffer Overflow
CAPEC
References (35)
URL Tag Source
http://googlechromereleases.blogspot.com/2015/04/stable-channel-update_14.html X_refsource_confirm
http://www.securitytracker.com/id/1032209 Vdb Entry
https://code.google.com/p/chromium/issues/detail?id=389595 X_refsource_confirm
https://code.google.com/p/chromium/issues/detail?id=400339 X_refsource_confirm
https://code.google.com/p/chromium/issues/detail?id=403665 X_refsource_confirm
https://code.google.com/p/chromium/issues/detail?id=424957 X_refsource_confirm
https://code.google.com/p/chromium/issues/detail?id=430533 X_refsource_confirm
https://code.google.com/p/chromium/issues/detail?id=436564 X_refsource_confirm
https://code.google.com/p/chromium/issues/detail?id=439992 X_refsource_confirm
https://code.google.com/p/chromium/issues/detail?id=442670 X_refsource_confirm
https://code.google.com/p/chromium/issues/detail?id=444198 X_refsource_confirm
https://code.google.com/p/chromium/issues/detail?id=445305 X_refsource_confirm
https://code.google.com/p/chromium/issues/detail?id=447889 X_refsource_confirm
https://code.google.com/p/chromium/issues/detail?id=448299 X_refsource_confirm
https://code.google.com/p/chromium/issues/detail?id=451058 X_refsource_confirm
https://code.google.com/p/chromium/issues/detail?id=451059 X_refsource_confirm
https://code.google.com/p/chromium/issues/detail?id=452794 X_refsource_confirm
https://code.google.com/p/chromium/issues/detail?id=456636 X_refsource_confirm
https://code.google.com/p/chromium/issues/detail?id=458776 X_refsource_confirm
https://code.google.com/p/chromium/issues/detail?id=458870 X_refsource_confirm
https://code.google.com/p/chromium/issues/detail?id=460939 X_refsource_confirm
https://code.google.com/p/chromium/issues/detail?id=462319 X_refsource_confirm
https://code.google.com/p/chromium/issues/detail?id=464594 X_refsource_confirm
https://code.google.com/p/chromium/issues/detail?id=465586 X_refsource_confirm
https://code.google.com/p/chromium/issues/detail?id=469082 X_refsource_confirm
https://code.google.com/p/chromium/issues/detail?id=469756 X_refsource_confirm
https://code.google.com/p/chromium/issues/detail?id=474254 X_refsource_confirm
https://code.google.com/p/chromium/issues/detail?id=476786 X_refsource_confirm
URL Date SRC
URL Date SRC
URL Date SRC
http://lists.opensuse.org/opensuse-updates/2015-04/msg00040.html 2023-11-07
http://lists.opensuse.org/opensuse-updates/2015-11/msg00024.html 2023-11-07
http://rhn.redhat.com/errata/RHSA-2015-0816.html 2023-11-07
http://ubuntu.com/usn/usn-2570-1 2023-11-07
http://www.debian.org/security/2015/dsa-3238 2023-11-07
https://access.redhat.com/security/cve/CVE-2015-1249 2015-04-16
https://bugzilla.redhat.com/show_bug.cgi?id=1211932 2015-04-16
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Debian
Search vendor "Debian"
 Debian Linux
Search vendor "Debian" for product "Debian Linux"
 8.0
Search vendor "Debian" for product "Debian Linux" and version "8.0"
-
Affected
Canonical
Search vendor "Canonical"
 Ubuntu Linux
Search vendor "Canonical" for product "Ubuntu Linux"
 14.04
Search vendor "Canonical" for product "Ubuntu Linux" and version "14.04"
lts
Affected
Canonical
Search vendor "Canonical"
 Ubuntu Linux
Search vendor "Canonical" for product "Ubuntu Linux"
 14.10
Search vendor "Canonical" for product "Ubuntu Linux" and version "14.10"
-
Affected
Canonical
Search vendor "Canonical"
 Ubuntu Linux
Search vendor "Canonical" for product "Ubuntu Linux"
 15.04
Search vendor "Canonical" for product "Ubuntu Linux" and version "15.04"
-
Affected
Google
Search vendor "Google"
 Chrome
Search vendor "Google" for product "Chrome"
 <= 42.0.2311.60
Search vendor "Google" for product "Chrome" and version " <= 42.0.2311.60"
-
Affected