CVE-2016-1617 — Sensitive Information Exposure in Google Chrome

CWE-200 — Sensitive Information Exposure11 documents6 sources

Severity

4.3MEDIUMNVD

OSV7.6

EPSS

0.6%

top 29.57%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Google Chrome

Timeline

PublishedJan 25

Latest updateMay 17

Description

The CSPSource::schemeMatches function in WebKit/Source/core/frame/csp/CSPSource.cpp in the Content Security Policy (CSP) implementation in Blink, as used in Google Chrome before 48.0.2564.82, does not apply http policies to https URLs and does not apply ws policies to wss URLs, which makes it easier for remote attackers to determine whether a specific HSTS web site has been visited by reading a CSP report.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:NExploitability: 2.8 | Impact: 1.4

Affected Packages1 packages

▶NVDgoogle/chrome47.0.2526.106+1

🔴Vulnerability Details

GHSA

GHSA-jc87-h9fr-rr78: The CSPSource::schemeMatches function in WebKit/Source/core/frame/csp/CSPSource↗2022-05-17

▶

GHSA

GHSA-wgvw-9qxr-cvw2: The CSPSource::schemeMatches function in WebKit/Source/core/frame/csp/CSPSource↗2022-05-17

▶

OSV

CVE-2016-5137: The CSPSource::schemeMatches function in WebKit/Source/core/frame/csp/CSPSource↗2016-07-23

▶

OSV

oxide-qt vulnerabilities↗2016-01-27

▶

OSV

CVE-2016-1617: The CSPSource::schemeMatches function in WebKit/Source/core/frame/csp/CSPSource↗2016-01-22

▶

📋Vendor Advisories

Red Hat

chromium-browser: history sniffing with hsts and csp↗2016-07-20

▶

Ubuntu

Oxide vulnerabilities↗2016-01-27

▶

Red Hat

chromium-browser: various fixes from internal audits↗2016-01-20

▶

💬Community

Bugzilla

CVE-2016-1617 chromium-browser: various fixes from internal audits↗2016-01-22

▶