extensions/renderer/resources/platform_app.js in the Extensions subsystem in Google Chrome before 49.0.2623.75 does not properly restrict use of Web APIs, which allows remote attackers to bypass intended access restrictions via a crafted platform app.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Chrome
Published: 2016-03-06T02:00:00
Updated: 2024-08-05T23:02:12.396Z
Reserved: 2016-01-12T00:00:00
Link: CVE-2016-1638
Vulnrichment
No data.
NVD
Status : Modified
Published: 2016-03-06T02:59:09.180
Modified: 2023-11-07T02:30:16.610
Link: CVE-2016-1638
Redhat