Security Advisory

CVE-2016-5144

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2016-08-07 19:00:00

Last updated 2024-08-06 00:53:47

Assigner Chrome

State PUBLISHED

Description

The Developer Tools (aka DevTools) subsystem in Blink, as used in Google Chrome before 52.0.2743.116, mishandles the script-path hostname, remoteBase parameter, and remoteFrontendUrl parameter, which allows remote attackers to bypass intended access restrictions via a crafted URL, a different vulnerability than CVE-2016-5143.

← Browse all CVEs View on cve.org ↗