Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2015-6581

EPSS 2.35% · P85
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2015-6581

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Double free vulnerability in the opj_j2k_copy_default_tcp_and_create_tcd function in j2k.c in OpenJPEG before r3002, as used in PDFium in Google Chrome before 45.0.2454.85, allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) by triggering a memory-allocation failure.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Google Chrome PDFium OpenJPEG 双重释放漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Google Chrome是美国谷歌(Google)公司开发的一款Web浏览器。PDFium是其中的一个开源PDF渲染引擎。OpenJPEG是一款基于C语言的开源JPEG 2000编码解码器。 Google Chrome 44.0.2403及之前版本的PDFium中使用的OpenJPEG r3002之前版本中的j2k.c文件中的‘opj_j2k_copy_default_tcp_and_create_tcd’函数存在双重释放漏洞。远程攻击者可通过触发内存分配失败利用该漏洞执行任意代码或造成拒绝服务(堆内存
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2015-6581

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2015-6581

Please Login to view more intelligence information

Same Patch Batch · n/a · 2015-09-03 · 26 CVEs total

CVE-2015-6582Google Chrome Blink 拒绝服务漏洞
CVE-2015-6654Xen 权限许可和访问控制漏洞
CVE-2015-6506Best Practical Solutions Request Tracker 跨站脚本漏洞
CVE-2015-5737Fortinet FortiClient 权限许可和访问控制漏洞
CVE-2015-5736Fortinet FortiClient 权限许可和访问控制漏洞
CVE-2015-5735Fortinet FortiClient 权限许可和访问控制漏洞
CVE-2015-5190PCS 命令注入漏洞
CVE-2015-5189PCS 竞争条件问题漏洞
CVE-2015-4077Fortinet FortiClient 信息泄露漏洞
CVE-2015-6545Cerb 跨站请求伪造漏洞
CVE-2015-4552MyBB 跨站脚本漏洞
CVE-2015-1516Polycom RealPresence CloudAXIS Suite 跨站脚本漏洞
CVE-2015-6583Google Chrome 安全漏洞
CVE-2015-1291Google Chrome Blink 权限许可和访问控制漏洞
CVE-2015-6580Google Chrome V8 拒绝服务漏洞
CVE-2015-1301Google Chrome 拒绝服务漏洞
CVE-2015-1300Google Chrome Blink 安全漏洞
CVE-2015-1299Google Chrome Blink 释放后重用漏洞
CVE-2015-1298Google Chrome 安全漏洞
CVE-2015-1297Google Chrome 安全漏洞

Showing top 20 of 26 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2015-6581

No comments yet

Leave a comment