All the vulnerabilites related to Google - Google Chrome
jvndb-2010-000056
Vulnerability from jvndb
Published
2010-11-26 17:32
Modified
2010-11-26 17:32
Summary
Google Chrome information disclosure vulnerability
Details
Google Chrome contains an information disclosure vulnerability.
Google Chrome contains an information disclosure vulnerability caused by the improper handling of XML files.
Takayoshi Isayama from Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
References
| ▼ | Type | URL |
|---|---|---|
| JVN | http://jvn.jp/en/jp/JVN36765384/index.html | |
| CVE | https://www.cve.org/CVERecord?id=CVE-2010-3917 | |
| NVD | https://nvd.nist.gov/vuln/detail/CVE-2010-3917 | |
| Information Exposure(CWE-200) | https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html |
Impacted products
| ▼ | Vendor | Product |
|---|---|---|
| Google Chrome |
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000056.html",
"dc:date": "2010-11-26T17:32+09:00",
"dcterms:issued": "2010-11-26T17:32+09:00",
"dcterms:modified": "2010-11-26T17:32+09:00",
"description": "Google Chrome contains an information disclosure vulnerability.\r\n\r\nGoogle Chrome contains an information disclosure vulnerability caused by the improper handling of XML files.\r\n\r\nTakayoshi Isayama from Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
"link": "https://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000056.html",
"sec:cpe": {
"#text": "cpe:/a:google:chrome",
"@product": "Google Chrome",
"@vendor": "Google",
"@version": "2.2"
},
"sec:cvss": {
"@score": "4.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2010-000056",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN36765384/index.html",
"@id": "JVN#36765384",
"@source": "JVN"
},
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2010-3917",
"@id": "CVE-2010-3917",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2010-3917",
"@id": "CVE-2010-3917",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-200",
"@title": "Information Exposure(CWE-200)"
}
],
"title": "Google Chrome information disclosure vulnerability"
}
jvndb-2015-005234
Vulnerability from jvndb
Published
2015-12-17 15:19
Modified
2015-12-17 15:19
Severity ?
Summary
Adobe Flash Player issue where iframe contents may be overwritten
Details
Adobe Flash Player contains an issue where the same-origin policy may be bypassed leading to iframe contents being overwritten.
Tokuji Akamine reported this vulnerability to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
References
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2015/JVNDB-2015-005234.html",
"dc:date": "2015-12-17T15:19+09:00",
"dcterms:issued": "2015-12-17T15:19+09:00",
"dcterms:modified": "2015-12-17T15:19+09:00",
"description": "Adobe Flash Player contains an issue where the same-origin policy may be bypassed leading to iframe contents being overwritten.\r\n\r\nTokuji Akamine reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
"link": "https://jvndb.jvn.jp/en/contents/2015/JVNDB-2015-005234.html",
"sec:cpe": [
{
"#text": "cpe:/a:adobe:adobe_air",
"@product": "Adobe AIR",
"@vendor": "Adobe Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/a:adobe:adobe_air_sdk",
"@product": "Adobe AIR SDK",
"@vendor": "Adobe Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/a:adobe:adobe_air_sdk_and_compiler",
"@product": "Adobe AIR SDK \u0026 Compiler",
"@vendor": "Adobe Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/a:adobe:flash_player",
"@product": "Adobe Flash Player",
"@vendor": "Adobe Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/a:google:chrome",
"@product": "Google Chrome",
"@vendor": "Google",
"@version": "2.2"
},
{
"#text": "cpe:/a:microsoft:edge",
"@product": "Microsoft Edge",
"@vendor": "Microsoft Corporation",
"@version": "2.2"
},
{
"#text": "cpe:/a:microsoft:internet_explorer",
"@product": "Microsoft Internet Explorer",
"@vendor": "Microsoft Corporation",
"@version": "2.2"
}
],
"sec:cvss": [
{
"@score": "5.8",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:P/I:P/A:N",
"@version": "2.0"
},
{
"@score": "5.4",
"@severity": "Medium",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2015-005234",
"sec:references": [
{
"#text": "https://jvn.jp/en/jp/JVN22533124/index.html",
"@id": "JVN#22533124",
"@source": "JVN"
},
{
"#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7628",
"@id": "CVE-2015-7628",
"@source": "CVE"
},
{
"#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-7628",
"@id": "CVE-2015-7628",
"@source": "NVD"
},
{
"#text": "http://www.ipa.go.jp/security/ciadr/vul/20151014-adobeflashplayer.html",
"@id": "Security Alert for Vulnerability in Adobe Flash Player (APSB15-25)(CVE-2015-7628 and others) ",
"@source": "IPA SECURITY ALERTS"
},
{
"#text": "https://www.jpcert.or.jp/english/at/2015/at150036.html",
"@id": "JPCERT-AT-2015-0036",
"@source": "JPCERT-WR"
},
{
"#text": "https://www.npa.go.jp/cyberpolice/topics/?seq=17024",
"@id": "For Adobe Flash Player security fix (2015/10/14)",
"@source": "AT-POLICE"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-Other",
"@title": "No Mapping(CWE-Other)"
}
],
"title": "Adobe Flash Player issue where iframe contents may be overwritten"
}