CVE-2014-3172

Published: Aug 27, 2014Modified: May 6, 2026

6.4

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:N

Exploitability: 10.0 / Impact: 4.9

Source: NVD

Description

The Debugger extension API in browser/extensions/api/debugger/debugger_api.cc in Google Chrome before 37.0.2062.94 does not validate a tab's URL before an attach operation, which allows remote attackers to bypass intended access limitations via an extension that uses a restricted URL, as demonstrated by a chrome:// URL.

Affected (82)

Products: Google: Chrome

Google

1 product

Chrome

Configuration A

82 vulnerable

Vulnerable Software	Affected Versions
Google Chrome	Up to 37.0.2062.93
Google Chrome	Version 37.0.2062.0
Google Chrome	Version 37.0.2062.10
Google Chrome	Version 37.0.2062.11
Google Chrome	Version 37.0.2062.12
Google Chrome	Version 37.0.2062.13
Google Chrome	Version 37.0.2062.14
Google Chrome	Version 37.0.2062.15
Google Chrome	Version 37.0.2062.16
Google Chrome	Version 37.0.2062.17
Google Chrome	Version 37.0.2062.18
Google Chrome	Version 37.0.2062.19
Google Chrome	Version 37.0.2062.1
Google Chrome	Version 37.0.2062.20
Google Chrome	Version 37.0.2062.21
Google Chrome	Version 37.0.2062.22
Google Chrome	Version 37.0.2062.23
Google Chrome	Version 37.0.2062.24
Google Chrome	Version 37.0.2062.25
Google Chrome	Version 37.0.2062.26
Google Chrome	Version 37.0.2062.27
Google Chrome	Version 37.0.2062.28
Google Chrome	Version 37.0.2062.29
Google Chrome	Version 37.0.2062.2
Google Chrome	Version 37.0.2062.30
Google Chrome	Version 37.0.2062.31
Google Chrome	Version 37.0.2062.32
Google Chrome	Version 37.0.2062.33
Google Chrome	Version 37.0.2062.34
Google Chrome	Version 37.0.2062.35
Google Chrome	Version 37.0.2062.36
Google Chrome	Version 37.0.2062.37
Google Chrome	Version 37.0.2062.39
Google Chrome	Version 37.0.2062.3
Google Chrome	Version 37.0.2062.43
Google Chrome	Version 37.0.2062.44
Google Chrome	Version 37.0.2062.45
Google Chrome	Version 37.0.2062.46
Google Chrome	Version 37.0.2062.47
Google Chrome	Version 37.0.2062.48
Google Chrome	Version 37.0.2062.49
Google Chrome	Version 37.0.2062.4
Google Chrome	Version 37.0.2062.50
Google Chrome	Version 37.0.2062.51
Google Chrome	Version 37.0.2062.52
Google Chrome	Version 37.0.2062.53
Google Chrome	Version 37.0.2062.54
Google Chrome	Version 37.0.2062.55
Google Chrome	Version 37.0.2062.56
Google Chrome	Version 37.0.2062.57
Google Chrome	Version 37.0.2062.58
Google Chrome	Version 37.0.2062.59
Google Chrome	Version 37.0.2062.5
Google Chrome	Version 37.0.2062.60
Google Chrome	Version 37.0.2062.61
Google Chrome	Version 37.0.2062.62
Google Chrome	Version 37.0.2062.63
Google Chrome	Version 37.0.2062.64
Google Chrome	Version 37.0.2062.65
Google Chrome	Version 37.0.2062.66
Google Chrome	Version 37.0.2062.67
Google Chrome	Version 37.0.2062.68
Google Chrome	Version 37.0.2062.69
Google Chrome	Version 37.0.2062.6
Google Chrome	Version 37.0.2062.70
Google Chrome	Version 37.0.2062.71
Google Chrome	Version 37.0.2062.72
Google Chrome	Version 37.0.2062.73
Google Chrome	Version 37.0.2062.74
Google Chrome	Version 37.0.2062.75
Google Chrome	Version 37.0.2062.76
Google Chrome	Version 37.0.2062.77
Google Chrome	Version 37.0.2062.78
Google Chrome	Version 37.0.2062.7
Google Chrome	Version 37.0.2062.80
Google Chrome	Version 37.0.2062.81
Google Chrome	Version 37.0.2062.89
Google Chrome	Version 37.0.2062.8
Google Chrome	Version 37.0.2062.90
Google Chrome	Version 37.0.2062.91
Google Chrome	Version 37.0.2062.92
Google Chrome	Version 37.0.2062.9