This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Google First view 2016-09-25
Product Chrome Os Last view 2018-03-06
Version 52.0.2743.116 Type Os
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:o:google:chrome_os

Activity : Overall

Related : CVE

  Date Alert Description
9.8 2018-03-06 CVE-2016-5179

Chrome OS before 53.0.2785.144 allows remote attackers to execute arbitrary commands at boot.

7.8 2018-02-07 CVE-2017-15400

Insufficient restriction of IPP filters in CUPS in Google Chrome OS prior to 62.0.3202.74 allowed a remote attacker to execute a command with the same privileges as the cups daemon via a crafted PPD file, aka a printer zeroconfig CRLF issue.

7.4 2018-02-07 CVE-2017-15397

Inappropriate implementation in ChromeVox in Google Chrome OS prior to 62.0.3202.74 allowed a remote attacker in a privileged network position to observe or tamper with certain cleartext HTTP requests by leveraging that position.

3.3 2017-10-27 CVE-2017-5084

Inappropriate implementation in image-burner in Google Chrome OS prior to 59.0.3071.92 allowed a local attacker to read local files via dbus-send commands to a BurnImage D-Bus endpoint.

8.8 2016-09-25 CVE-2016-5169

Format string vulnerability in Google Chrome OS before 53.0.2785.103 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

CWE : Common Weakness Enumeration

%idName
25% (1) CWE-311 Missing Encryption of Sensitive Data
25% (1) CWE-269 Improper Privilege Management
25% (1) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer
25% (1) CWE-93 Failure to Sanitize CRLF Sequences ('CRLF Injection')

Nessus® Vulnerability Scanner

id Description
2018-07-12 Name: The remote Debian host is missing a security-related update.
File: debian_DSA-4243.nasl - Type: ACT_GATHER_INFO
2017-06-21 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-201706-20.nasl - Type: ACT_GATHER_INFO