CVE-2015-1290: Detailed Vulnerability Analysis and Overview

Status: Modified - Last modified: 21-11-2024 Published: 09-01-2018

CVE-2015-1290
Vulnerability Scoring

8.8
/10

Attack Complexity Details

  • Attack Complexity: Low Impact
  • Attack Vector: NETWORK
  • Privileges Required: None
  • Scope: UNCHANGED
  • User Interaction: REQUIRED

CIA Impact Definition

  • Confidentiality: HIGH IMPACT
  • Integrity: HIGH IMPACT
  • Availability: HIGH IMPACT

CVE-2015-1290 Vulnerability Summary

The Google V8 engine, as used in Google Chrome before 44.0.2403.89 and QtWebEngineCore in Qt before 5.5.1, allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a crafted web site.

Access Complexity Graph for CVE-2015-1290

Impact Analysis for CVE-2015-1290

CVE-2015-1290: Detailed Information and External References

EPSS

0.01675

EPSS %

0.88165

References

0.01675

CWE

CWE-119

CAPEC

0.01675

Vulnerable Configurations