CVE-2015-1265
published 2015-05-20CVE-2015-1265: Multiple unspecified vulnerabilities in Google Chrome before 43.0.2357.65 allow attackers to cause a denial of service or possibly have other impact via…
PriorityP341high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
7.85%
94.0th percentile
Multiple unspecified vulnerabilities in Google Chrome before 43.0.2357.65 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| chrome | <= 42.0.2311.152 | — |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv7.5HIGH
vendor_redhat7.5HIGH
vendor_ubuntu7.5HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-mc54-9xxf-gxqc: Multiple unspecified vulnerabilities in Google Chrome before 43
ghsa_unreviewed·2022-05-17
CVE-2015-1265 [HIGH] GHSA-mc54-9xxf-gxqc: Multiple unspecified vulnerabilities in Google Chrome before 43
Multiple unspecified vulnerabilities in Google Chrome before 43.0.2357.65 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
OSV
oxide-qt vulnerabilities
osv·2015-05-21·CVSS 7.5
CVE-2015-1253 [HIGH] oxide-qt vulnerabilities
oxide-qt vulnerabilities
Several security issues were discovered in the DOM implementation in
Blink. If a user were tricked in to opening a specially crafted website,
an attacker could potentially exploit these to bypass Same Origin Policy
restrictions. (CVE-2015-1253, CVE-2015-1254)
A use-after-free was discovered in the WebAudio implementation in
Chromium. If a user were tricked in to opening a specially crafted
website, an attacker could potentially exploit this to cause a denial of
service via renderer crash, or execute arbitrary code with the privileges
of the sandboxed render process. (CVE-2015-1255)
A use-after-free was discovered in the SVG implementation in Blink. If a
user were tricked in to opening a specially crafted website, an attacker
could potentially exploit this to cau
OSV
CVE-2015-1265: Multiple unspecified vulnerabilities in Google Chrome before 43
osv·2015-05-20·CVSS 7.5
CVE-2015-1265 [HIGH] CVE-2015-1265: Multiple unspecified vulnerabilities in Google Chrome before 43
Multiple unspecified vulnerabilities in Google Chrome before 43.0.2357.65 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
Ubuntu
Oxide vulnerabilities
vendor_ubuntu·2015-05-21·CVSS 7.5
CVE-2015-1253 [HIGH] Oxide vulnerabilities
Title: Oxide vulnerabilities
Summary: Several security issues were fixed in Oxide.
Several security issues were discovered in the DOM implementation in
Blink. If a user were tricked in to opening a specially crafted website,
an attacker could potentially exploit these to bypass Same Origin Policy
restrictions. (CVE-2015-1253, CVE-2015-1254)
A use-after-free was discovered in the WebAudio implementation in
Chromium. If a user were tricked in to opening a specially crafted
website, an attacker could potentially exploit this to cause a denial of
service via renderer crash, or execute arbitrary code with the privileges
of the sandboxed render process. (CVE-2015-1255)
A use-after-free was discovered in the SVG implementation in Blink. If a
user were tricked in to opening a specially crafted
Red Hat
chromium-browser: Various fixes from internal audits, fuzzing and other initiatives.
vendor_redhat·2015-05-19·CVSS 7.5
CVE-2015-1265 [HIGH] chromium-browser: Various fixes from internal audits, fuzzing and other initiatives.
chromium-browser: Various fixes from internal audits, fuzzing and other initiatives.
Multiple unspecified vulnerabilities in Google Chrome before 43.0.2357.65 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
No detection rules found.
http://googlechromereleases.blogspot.com/2015/05/stable-channel-update_19.htmlhttp://lists.opensuse.org/opensuse-updates/2015-05/msg00091.htmlhttp://lists.opensuse.org/opensuse-updates/2015-11/msg00015.htmlhttp://www.debian.org/security/2015/dsa-3267http://www.securityfocus.com/bid/74727http://www.securitytracker.com/id/1032375https://code.google.com/p/chromium/issues/detail?id=413534https://code.google.com/p/chromium/issues/detail?id=445741https://code.google.com/p/chromium/issues/detail?id=448057https://code.google.com/p/chromium/issues/detail?id=454157https://code.google.com/p/chromium/issues/detail?id=458026https://code.google.com/p/chromium/issues/detail?id=464642https://code.google.com/p/chromium/issues/detail?id=464792https://code.google.com/p/chromium/issues/detail?id=465426https://code.google.com/p/chromium/issues/detail?id=467372https://code.google.com/p/chromium/issues/detail?id=467644https://code.google.com/p/chromium/issues/detail?id=474784https://code.google.com/p/chromium/issues/detail?id=475070https://code.google.com/p/chromium/issues/detail?id=476107https://code.google.com/p/chromium/issues/detail?id=484270https://code.google.com/p/chromium/issues/detail?id=485412https://code.google.com/p/chromium/issues/detail?id=485419https://code.google.com/p/chromium/issues/detail?id=489518https://security.gentoo.org/glsa/201506-04https://www.exploit-db.com/exploits/37766/http://googlechromereleases.blogspot.com/2015/05/stable-channel-update_19.htmlhttp://lists.opensuse.org/opensuse-updates/2015-05/msg00091.htmlhttp://lists.opensuse.org/opensuse-updates/2015-11/msg00015.htmlhttp://www.debian.org/security/2015/dsa-3267http://www.securityfocus.com/bid/74727http://www.securitytracker.com/id/1032375https://code.google.com/p/chromium/issues/detail?id=413534https://code.google.com/p/chromium/issues/detail?id=445741https://code.google.com/p/chromium/issues/detail?id=448057https://code.google.com/p/chromium/issues/detail?id=454157https://code.google.com/p/chromium/issues/detail?id=458026https://code.google.com/p/chromium/issues/detail?id=464642https://code.google.com/p/chromium/issues/detail?id=464792https://code.google.com/p/chromium/issues/detail?id=465426https://code.google.com/p/chromium/issues/detail?id=467372https://code.google.com/p/chromium/issues/detail?id=467644https://code.google.com/p/chromium/issues/detail?id=474784https://code.google.com/p/chromium/issues/detail?id=475070https://code.google.com/p/chromium/issues/detail?id=476107https://code.google.com/p/chromium/issues/detail?id=484270https://code.google.com/p/chromium/issues/detail?id=485412https://code.google.com/p/chromium/issues/detail?id=485419https://code.google.com/p/chromium/issues/detail?id=489518https://security.gentoo.org/glsa/201506-04https://www.exploit-db.com/exploits/37766/
2015-05-20
Published