CVE-2016-5137

Published: Jul 23, 2016Modified: May 6, 2026

4.3

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

Exploitability: 2.8 / Impact: 1.4

Source: NVD

Description

The CSPSource::schemeMatches function in WebKit/Source/core/frame/csp/CSPSource.cpp in the Content Security Policy (CSP) implementation in Blink, as used in Google Chrome before 52.0.2743.82, does not apply http :80 policies to https :443 URLs and does not apply ws :80 policies to wss :443 URLs, which makes it easier for remote attackers to determine whether a specific HSTS web site has been visited by reading a CSP report. NOTE: this vulnerability is associated with a specification change after CVE-2016-1617 resolution.

Affected (1)

Products: Google: Chrome

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Google Chrome	Up to 51.0.2704.106

Related CWEs

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (26)

http://googlechromereleases.blogspot.com/2016/07/stable-channel-update.html

Source: chrome-cve-admin@google.com

http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00020.html

Source: chrome-cve-admin@google.com

http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00021.html

Source: chrome-cve-admin@google.com

http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00022.html

Source: chrome-cve-admin@google.com

http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00028.html

Source: chrome-cve-admin@google.com

http://rhn.redhat.com/errata/RHSA-2016-1485.html

Source: chrome-cve-admin@google.com

http://www.debian.org/security/2016/dsa-3637

Source: chrome-cve-admin@google.com

http://www.securityfocus.com/bid/92053

Source: chrome-cve-admin@google.com

http://www.securitytracker.com/id/1036428

Source: chrome-cve-admin@google.com

http://www.ubuntu.com/usn/USN-3041-1

Source: chrome-cve-admin@google.com

https://codereview.chromium.org/2125873003

Source: chrome-cve-admin@google.com

https://crbug.com/625945

Source: chrome-cve-admin@google.com

https://security.gentoo.org/glsa/201610-09

Source: chrome-cve-admin@google.com

http://googlechromereleases.blogspot.com/2016/07/stable-channel-update.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00020.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00021.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00022.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00028.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://rhn.redhat.com/errata/RHSA-2016-1485.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.debian.org/security/2016/dsa-3637

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/92053

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id/1036428

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/USN-3041-1

Source: af854a3a-2127-422b-91ae-364da2661108

https://codereview.chromium.org/2125873003

Source: af854a3a-2127-422b-91ae-364da2661108

https://crbug.com/625945

Source: af854a3a-2127-422b-91ae-364da2661108

https://security.gentoo.org/glsa/201610-09

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.