How severe is CVE-2016-5192?

CVE-2016-5192 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2016-5192

Name: chrome
Author: google

6.5MEDIUM

Blink in Google Chrome prior to 54.0.2840.59 for Windows missed a CORS check on redirect in TextTrackLoader, which allowed a remote attacker to bypass cross-origin restrictions via crafted HTML pages.

게시됨: 12/18/2016업데이트됨: 4/12/2025

설명

Blink in Google Chrome prior to 54.0.2840.59 for Windows missed a CORS check on redirect in TextTrackLoader, which allowed a remote attacker to bypass cross-origin restrictions via crafted HTML pages.

AI 분석AI 기반

영향받는 제품

googlechrome

참조

http://rhn.redhat.com/errata/RHSA-2016-2067.html
http://www.securityfocus.com/bid/93528
https://chromereleases.googleblog.com/2016/10/stable-channel-update-for-desktop.html
https://crbug.com/633885
https://security.gentoo.org/glsa/201610-09
http://rhn.redhat.com/errata/RHSA-2016-2067.html
http://www.securityfocus.com/bid/93528
https://chromereleases.googleblog.com/2016/10/stable-channel-update-for-desktop.html
https://crbug.com/633885
https://security.gentoo.org/glsa/201610-09