CVE-2015-6786 — Google Chrome vulnerability

CWE-2647 documents6 sources

Severity

4.3MEDIUMNVD

OSV10.0

EPSS

0.8%

top 26.47%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Google Chrome

Timeline

PublishedDec 6

Latest updateMay 17

Description

The CSPSourceList::matches function in WebKit/Source/core/frame/csp/CSPSourceList.cpp in the Content Security Policy (CSP) implementation in Google Chrome before 47.0.2526.73 accepts a blob:, data:, or filesystem: URL as a match for a * pattern, which allows remote attackers to bypass intended scheme restrictions in opportunistic circumstances by leveraging a policy that relies on this pattern.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

▶NVDgoogle/chrome46.0.2490.86

🔴Vulnerability Details

GHSA

GHSA-2q8g-g58w-wjjm: The CSPSourceList::matches function in WebKit/Source/core/frame/csp/CSPSourceList↗2022-05-17

▶

OSV

oxide-qt vulnerabilities↗2015-12-10

▶

OSV

CVE-2015-6786: The CSPSourceList::matches function in WebKit/Source/core/frame/csp/CSPSourceList↗2015-12-05

▶

📋Vendor Advisories

Ubuntu

Oxide vulnerabilities↗2015-12-10

▶

Red Hat

chromium-browser: Scheme bypass in CSP↗2015-12-01

▶

💬Community

Bugzilla

CVE-2015-6786 chromium-browser: Scheme bypass in CSP↗2015-12-02

▶