CVE-2015-1300Sensitive Information Exposure in Google Chrome

CWE-254CWE-200Sensitive Information Exposure13 documents6 sources
Severity
5.0MEDIUMNVD
OSV6.4
EPSS
0.9%
top 24.20%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
Mozilla FirefoxGoogle ChromeFedoraproject Fedora+2 more
Timeline
PublishedSep 3
Latest updateMay 17

Description

The FrameFetchContext::updateTimingInfoForIFrameNavigation function in core/loader/FrameFetchContext.cpp in Blink, as used in Google Chrome before 45.0.2454.85, does not properly restrict the availability of IFRAME Resource Timing API times, which allows remote attackers to obtain sensitive information via crafted JavaScript code that leverages a history.back call.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages5 packages

NVDgoogle/chrome44.0.2403
Ubuntumozilla/firefox< 43.0+build1-0ubuntu0.14.04.1
NVDmozilla/firefox42.0
NVDopensuse/leap42.1
NVDopensuse/opensuse13.1, 13.2+1

Also affects: Fedora 22, 23

🔴Vulnerability Details

5
GHSA
GHSA-3xvg-65vh-g47p: The FrameFetchContext::updateTimingInfoForIFrameNavigation function in core/loader/FrameFetchContext2022-05-17
GHSA
GHSA-5845-x3vj-jgw8: Mozilla Firefox before 432022-05-14
OSV
CVE-2015-7207: Mozilla Firefox before 432015-12-15
OSV
oxide-qt vulnerabilities2015-09-08
OSV
CVE-2015-1300: The FrameFetchContext::updateTimingInfoForIFrameNavigation function in core/loader/FrameFetchContext2015-09-02

📋Vendor Advisories

4
Red Hat
Mozilla: Same-origin policy violation using perfomance.getEntries and history navigation (MFSA 2015-136)2015-12-16
Ubuntu
Oxide vulnerabilities2015-09-08
Red Hat
chromium-browser: Information leak in Blink2015-09-01
Red Hat
webkitgtk: arbitrary code execution with root privileges (WSA-2015-0001)2015-01-26

💬Community

2
Bugzilla
CVE-2015-1300 chromium-browser: Information leak in Blink2015-09-02
Bugzilla
CVE-2014-1300 webkitgtk: arbitrary code execution with root privileges (WSA-2015-0001)2015-01-27