Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2015-6787 — Google Chrome vulnerability

10 documents7 sources

Severity

10.0CRITICALNVD

EPSS

40.2%

top 2.65%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Google Chrome

Timeline

PublishedDec 6

Latest updateMay 17

Description

Multiple unspecified vulnerabilities in Google Chrome before 47.0.2526.73 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

▶NVDgoogle/chrome46.0.2490.86

🔴Vulnerability Details

GHSA

GHSA-5p9h-vcjc-336q: Multiple unspecified vulnerabilities in Google Chrome before 47↗2022-05-17

▶

OSV

oxide-qt vulnerabilities↗2015-12-10

▶

OSV

CVE-2015-6787: Multiple unspecified vulnerabilities in Google Chrome before 47↗2015-12-05

▶

💥Exploits & PoCs

Exploit-DB

pdfium - CPDF_Function::Call Stack Buffer Overflow↗2016-01-04

▶

Exploit-DB

pdfium - CPDF_TextObject::CalcPositionData Heap Out-of-Bounds Read↗2016-01-04

▶

Exploit-DB

pdfium - CPDF_DIBSource::DownSampleScanline32Bit Heap Out-of-Bounds Read↗2016-01-04

▶

📋Vendor Advisories

Ubuntu

Oxide vulnerabilities↗2015-12-10

▶

Red Hat

chromium-browser: Various fixes from internal audits↗2015-12-01

▶

💬Community

Bugzilla

CVE-2015-6787 CVE-2015-8479 CVE-2015-8480 chromium-browser: Various fixes from internal audits↗2015-12-02

▶