CVE-2014-3160
20.07.2014, 11:12
The ResourceFetcher::canRequest function in core/fetch/ResourceFetcher.cpp in Blink, as used in Google Chrome before 36.0.1985.125, does not properly restrict subresource requests associated with SVG files, which allows remote attackers to bypass the Same Origin Policy via a crafted file.Enginsight
| Vendor | Product | Version |
|---|---|---|
| debian | debian_linux | 7.0 |
| debian | debian_linux | 8.0 |
| chrome | 36.0.1985.1 | |
| chrome | 36.0.1985.2 | |
| chrome | 36.0.1985.3 | |
| chrome | 36.0.1985.4 | |
| chrome | 36.0.1985.5 | |
| chrome | 36.0.1985.6 | |
| chrome | 36.0.1985.8 | |
| chrome | 36.0.1985.12 | |
| chrome | 36.0.1985.13 | |
| chrome | 36.0.1985.14 | |
| chrome | 36.0.1985.15 | |
| chrome | 36.0.1985.16 | |
| chrome | 36.0.1985.17 | |
| chrome | 36.0.1985.18 | |
| chrome | 36.0.1985.19 | |
| chrome | 36.0.1985.20 | |
| chrome | 36.0.1985.21 | |
| chrome | 36.0.1985.22 | |
| chrome | 36.0.1985.23 | |
| chrome | 36.0.1985.24 | |
| chrome | 36.0.1985.25 | |
| chrome | 36.0.1985.26 | |
| chrome | 36.0.1985.27 | |
| chrome | 36.0.1985.28 | |
| chrome | 36.0.1985.29 | |
| chrome | 36.0.1985.30 | |
| chrome | 36.0.1985.31 | |
| chrome | 36.0.1985.32 | |
| chrome | 36.0.1985.33 | |
| chrome | 36.0.1985.34 | |
| chrome | 36.0.1985.35 | |
| chrome | 36.0.1985.36 | |
| chrome | 36.0.1985.37 | |
| chrome | 36.0.1985.38 | |
| chrome | 36.0.1985.39 | |
| chrome | 36.0.1985.40 | |
| chrome | 36.0.1985.41 | |
| chrome | 36.0.1985.42 | |
| chrome | 36.0.1985.43 | |
| chrome | 36.0.1985.44 | |
| chrome | 36.0.1985.45 | |
| chrome | 36.0.1985.46 | |
| chrome | 36.0.1985.47 | |
| chrome | 36.0.1985.48 | |
| chrome | 36.0.1985.49 | |
| chrome | 36.0.1985.50 | |
| chrome | 36.0.1985.51 | |
| chrome | 36.0.1985.52 | |
| chrome | 36.0.1985.53 | |
| chrome | 36.0.1985.54 | |
| chrome | 36.0.1985.55 | |
| chrome | 36.0.1985.56 | |
| chrome | 36.0.1985.57 | |
| chrome | 36.0.1985.58 | |
| chrome | 36.0.1985.59 | |
| chrome | 36.0.1985.60 | |
| chrome | 36.0.1985.61 | |
| chrome | 36.0.1985.62 | |
| chrome | 36.0.1985.63 | |
| chrome | 36.0.1985.64 | |
| chrome | 36.0.1985.65 | |
| chrome | 36.0.1985.66 | |
| chrome | 36.0.1985.67 | |
| chrome | 36.0.1985.68 | |
| chrome | 36.0.1985.69 | |
| chrome | 36.0.1985.70 | |
| chrome | 36.0.1985.72 | |
| chrome | 36.0.1985.73 | |
| chrome | 36.0.1985.74 | |
| chrome | 36.0.1985.75 | |
| chrome | 36.0.1985.76 | |
| chrome | 36.0.1985.77 | |
| chrome | 36.0.1985.78 | |
| chrome | 36.0.1985.79 | |
| chrome | 36.0.1985.81 | |
| chrome | 36.0.1985.82 | |
| chrome | 36.0.1985.83 | |
| chrome | 36.0.1985.84 | |
| chrome | 36.0.1985.85 | |
| chrome | 36.0.1985.86 | |
| chrome | 36.0.1985.87 | |
| chrome | 36.0.1985.88 | |
| chrome | 36.0.1985.89 | |
| chrome | 36.0.1985.90 | |
| chrome | 36.0.1985.91 | |
| chrome | 36.0.1985.92 | |
| chrome | 36.0.1985.93 | |
| chrome | 36.0.1985.94 | |
| chrome | 36.0.1985.95 | |
| chrome | 36.0.1985.96 | |
| chrome | 36.0.1985.97 | |
| chrome | 36.0.1985.98 | |
| chrome | 36.0.1985.99 | |
| chrome | 36.0.1985.100 | |
| chrome | 36.0.1985.101 | |
| chrome | 36.0.1985.102 | |
| chrome | 36.0.1985.103 | |
| chrome | 36.0.1985.104 | |
| chrome | 36.0.1985.105 | |
| chrome | 36.0.1985.106 | |
| chrome | 36.0.1985.122 | |
| chrome | 36.0.1985.123 | |
| chrome | 36.0.1985.124 |
𝑥
= Vulnerable software versions
Ubuntu Releases
Common Weakness Enumeration
References