CVE-2016-5132
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2016-5132
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The Service Workers subsystem in Google Chrome before 52.0.2743.82 does not properly implement the Secure Contexts specification during decisions about whether to control a subframe, which allows remote attackers to bypass the Same Origin Policy via an https IFRAME element inside an http IFRAME element.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Google Chrome 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Google Chrome是美国谷歌(Google)公司开发的一款Web浏览器。 Google Chrome 52.0.2743.82之前版本中的Service Workers子系统存在安全漏洞,该漏洞源于程序没有正确实现Secure Contexts规范。远程攻击者可利用该漏洞绕过同源策略。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2016-5132
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2016-5132
Please Login to view more intelligence information
- https://crbug.com/607543x_refsource_CONFIRM
- https://codereview.chromium.org/2061203002/x_refsource_CONFIRM
- https://codereview.chromium.org/2085923002x_refsource_CONFIRM
- https://codereview.chromium.org/2071433003x_refsource_CONFIRM
- https://codereview.chromium.org/2082493002/x_refsource_CONFIRM
- https://codereview.chromium.org/2009453002x_refsource_CONFIRM
- http://googlechromereleases.blogspot.com/2016/07/stable-channel-update.htmlx_refsource_CONFIRM
- http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00022.htmlvendor-advisoryx_refsource_SUSE
- http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00028.htmlvendor-advisoryx_refsource_SUSE
- http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00021.htmlvendor-advisoryx_refsource_SUSE
- http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00020.htmlvendor-advisoryx_refsource_SUSE
- https://nvd.nist.gov/vuln/detail/CVE-2016-5132
Same Patch Batch · n/a · 2016-07-23 · 18 CVEs total
| CVE-2016-5128 | Google Chrome Google V8 安全漏洞 | |
| CVE-2016-5137 | Google Chrome Blink 安全漏洞 | |
| CVE-2016-5136 | Google Chrome 释放后重用漏洞 | |
| CVE-2016-5135 | Google Chrome Blink 安全漏洞 | |
| CVE-2016-5134 | Google Chrome Proxy Auto-Config功能安全漏洞 | |
| CVE-2016-5133 | Google Chrome 安全漏洞 | |
| CVE-2016-5131 | Google Chrome 资源管理错误漏洞 | |
| CVE-2016-5130 | Google Chrome content/renderer/history_controller.cc文件安全漏洞 | |
| CVE-2016-5129 | Google Chrome Google V8 安全漏洞 | |
| CVE-2016-1705 | Google Chrome 拒绝服务漏洞 | |
| CVE-2016-5127 | Google Chrome Blink 释放后重用漏洞 | |
| CVE-2016-1711 | Google Chrome Blink 安全漏洞 | |
| CVE-2016-1710 | Google Chrome Blink 安全漏洞 | |
| CVE-2016-1709 | Google Chrome ‘ByteArray::Get’方法基于堆的缓冲区溢出漏洞 | |
| CVE-2016-1708 | Google Chrome Extensions子系统拒绝服务漏洞 | |
| CVE-2016-1707 | Google Chrome 安全漏洞 | |
| CVE-2016-1706 | Google Chrome PPAPI 安全漏洞 |
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8224
Open5GS PCF context.c pcf_sess_set_ipv6prefix denial of serv - CVE-2026-8223
Open5GS sm-policies Endpoint pcf_sess_sbi_discover_and_send - CVE-2026-8222
Open5GS sm-policies Endpoint nbsf-handler.c pcf_nbsf_managem - CVE-2026-8196
JeecgBoot mLogin Endpoint LoginController.java authorization - CVE-2026-8195
JeecgBoot SVG File CommonController.java cross site scriptin
V. Comments for CVE-2016-5132
No comments yet