The host is installed with Google Chrome before 45.0.2454.85 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly restrict the availability of IFRAME Resource Timing API times. Successful exploitation could allow remote attackers to obtain sensitive information via crafted JavaScript code that leverages a history.back call.
The host is installed with Google Chrome before 45.0.2454.85 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly restrict the availability of IFRAME Resource Timing API times. Successful exploitation could allow remote attackers to obtain sensitive information via crafted JavaScript code that leverages a history.back call.
The host is installed with Google Chrome before 45.0.2454.85 and is prone to an use-after-free vulnerability. A flaw is present in the application, which fails to properly handle erroneous timer firing. Successful exploitation could allow remote attackers to crash the service or possibly have unspecified other impact.
The host is installed with Google Chrome before 45.0.2454.85 and is prone to an use-after-free vulnerability. A flaw is present in the application, which fails to properly handle erroneous timer firing. Successful exploitation could allow remote attackers to crash the service or possibly have unspecified other impact.
The host is installed with Google Chrome before 45.0.2454.85 and is prone to an arbitrary URL access vulnerability. A flaw is present in the application, which fails to properly ensure that the setUninstallURL preference corresponds to the URL of a web site. Successful exploitation allows attackers to trigger access to an arbitrary URL via a crafted extension that is uninstalled.
The host is installed with Google Chrome before 45.0.2454.85 and is prone to an arbitrary URL access vulnerability. A flaw is present in the application, which fails to properly ensure that the setUninstallURL preference corresponds to the URL of a web site. Successful exploitation allows attackers to trigger access to an arbitrary URL via a crafted extension that is uninstalled.
The host is installed with Google Chrome before 45.0.2454.85 and is prone to a security bypass vulnerability. A flaw is present in the application, which fails to properly handle a crafted (1) app or (2) extension. Successful exploitation allows user-assisted remote attackers to bypass intended access restrictions.
The host is installed with Google Chrome before 45.0.2454.85 and is prone to a security bypass vulnerability. A flaw is present in the application, which fails to properly handle a crafted (1) app or (2) extension. Successful exploitation allows user-assisted remote attackers to bypass intended access restrictions.
The host is installed with Google Chrome before 45.0.2454.85 and is prone to a SSL spoofing vulnerability. A flaw is present in the application, which fails to properly prevent display of Unicode LOCK characters in the omnibox. Successful exploitation allows user-assisted remote attackers to spoof the SSL lock icon by placing one of these characters at the end of a URL.
The host is installed with Google Chrome before 45.0.2454.85 and is prone to a SSL spoofing vulnerability. A flaw is present in the application, which fails to properly prevent display of Unicode LOCK characters in the omnibox. Successful exploitation allows user-assisted remote attackers to spoof the SSL lock icon by placing one of these characters at the end of a URL.