CVE-2016-1658

MEDIUM

Google Chrome <50.0.2661.75 - SSRF

Title source: llm

Description

The Extensions subsystem in Google Chrome before 50.0.2661.75 incorrectly relies on GetOrigin method calls for origin comparisons, which allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted extension.

References (10)

[Patch] https://codereview.chromium.org/1658913002

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2016-0638.html

[Release Notes, Vendor Advisory] http://googlechromereleases.blogspot.com/2016/04/stable-channel-update_13.html

[Issue Tracking] https://crbug.com/573317

[Third Party Advisory] http://www.debian.org/security/2016/dsa-3549

[Third Party Advisory] https://security.gentoo.org/glsa/201605-02

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00040.html

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00041.html

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00049.html

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00050.html

Scores

CVSS v3 4.3

EPSS 0.0088

EPSS Percentile 75.1%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

Classification

CWE

CWE-284 CWE-200

Status draft

Affected Products (4)

novell/suse_package_hub_for_suse_linux_enterprise

opensuse/leap

google/chrome < 49.0.2623.112

debian/debian_linux

Timeline

Published Apr 18, 2016

Tracked Since Feb 18, 2026