CVE-2014-1748

{"id": "CVE-2014-1748", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2014-05-21T11:14:09.863", "references": [{"url": "http://googlechromereleases.blogspot.com/2014/05/stable-channel-update_20.html", "source": "chrome-cve-admin@google.com"}, {"url": "http://lists.apple.com/archives/security-announce/2014/Dec/msg00000.html", "source": "chrome-cve-admin@google.com"}, {"url": "http://lists.opensuse.org/opensuse-updates/2014-06/msg00023.html", "source": "chrome-cve-admin@google.com"}, {"url": "http://lists.opensuse.org/opensuse-updates/2016-03/msg00132.html", "source": "chrome-cve-admin@google.com"}, {"url": "http://secunia.com/advisories/58920", "source": "chrome-cve-admin@google.com"}, {"url": "http://secunia.com/advisories/59155", "source": "chrome-cve-admin@google.com"}, {"url": "http://secunia.com/advisories/60372", "source": "chrome-cve-admin@google.com"}, {"url": "http://security.gentoo.org/glsa/glsa-201408-16.xml", "source": "chrome-cve-admin@google.com"}, {"url": "http://support.apple.com/kb/HT6596", "source": "chrome-cve-admin@google.com"}, {"url": "http://www.debian.org/security/2014/dsa-2939", "source": "chrome-cve-admin@google.com"}, {"url": "http://www.securitytracker.com/id/1030270", "source": "chrome-cve-admin@google.com"}, {"url": "http://www.ubuntu.com/usn/USN-2937-1", "source": "chrome-cve-admin@google.com"}, {"url": "https://code.google.com/p/chromium/issues/detail?id=331168", "source": "chrome-cve-admin@google.com"}, {"url": "https://src.chromium.org/viewvc/blink?revision=170625&view=revision", "source": "chrome-cve-admin@google.com"}, {"url": "http://googlechromereleases.blogspot.com/2014/05/stable-channel-update_20.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://lists.apple.com/archives/security-announce/2014/Dec/msg00000.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://lists.opensuse.org/opensuse-updates/2014-06/msg00023.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://lists.opensuse.org/opensuse-updates/2016-03/msg00132.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/58920", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/59155", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/60372", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://security.gentoo.org/glsa/glsa-201408-16.xml", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://support.apple.com/kb/HT6596", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.debian.org/security/2014/dsa-2939", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securitytracker.com/id/1030270", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.ubuntu.com/usn/USN-2937-1", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://code.google.com/p/chromium/issues/detail?id=331168", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://src.chromium.org/viewvc/blink?revision=170625&view=revision", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "The ScrollView::paint function in platform/scroll/ScrollView.cpp in Blink, as used in Google Chrome before 35.0.1916.114, allows remote attackers to spoof the UI by extending scrollbar painting into the parent frame."}, {"lang": "es", "value": "La funci\u00f3n ScrollView::paint en platform/scroll/ScrollView.cpp en Blink, utilizado en Google Chrome anterior a 35.0.1916.114, permite a atacantes remotos falsificar la interfaz de usuario mediante la extensi\u00f3n de la representaci\u00f3n gr\u00e1fica de la barra de desplazamiento hacia el marco padre."}], "lastModified": "2025-04-12T10:46:40.837", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "24036B85-837E-46F1-8D2A-7B06E0657979", "versionEndIncluding": "35.0.1916.113"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B7A8B66A-B3CA-44D4-8840-E544D95C5C55"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4626CE7E-1135-43BB-A999-D9E9645F4F26"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "15B6A451-EF11-47B4-84E7-3EF2554717BE"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3E5FCB33-E3B3-4CB5-8009-67EBAA2AF27A"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "825D51C2-BF0E-4A17-B07B-FBBE07FF3430"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "44AE8107-4530-48A9-BF3D-6CEEFFDE81DA"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "94744496-D0BE-4FAC-B0DE-40E2EF7D2967"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D18C1D47-733C-4B51-9A04-253D06D20528"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BC6B4DAE-315E-4D49-A4E2-169AE8C659AB"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6E267532-0240-48B5-A8A7-D452DCE68545"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B073B1B6-37FC-4481-A4A8-D859F9CAD0D2"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "249F1026-0BEE-44FC-BA08-B18A67EC2D34"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1D7BF63D-3561-4636-9D0F-5C029DE4FDE6"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.14:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "65DCFD8D-42CD-4E88-9B66-10D30390A029"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.15:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E8B78C9F-2431-4BED-AE00-C9C6F49D91BD"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.17:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6638F45A-3E2E-47A7-9E29-51BC80E821CC"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.18:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "97C21673-D3BE-4549-ADBE-86A8C544ACED"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.19:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "905CE4CB-23CE-46B3-AF25-8300A348D330"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.20:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "63D7D729-94F9-406F-9AD7-FD4830234FA6"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.21:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "70B2C2C1-6D3C-416D-8BA2-8A1E8783260C"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.22:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4E4E3A0D-5FFD-49BB-B0DC-D966D4FEE656"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.23:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B09378C5-9960-4DBA-BADF-75F59A670949"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.27:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FB5DCFC6-4E56-4C8C-884C-DF1CB3BC7259"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.31:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0BEB034A-ED1A-4692-BC3D-EC87204A6092"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.32:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D7DC0366-8512-4679-9C01-92B894CB1E65"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.33:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "42440388-7439-407F-A753-77B5E196E764"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.34:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "08529C78-3AEF-4A48-B57A-A3AFD220E717"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.35:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E4418F2D-F462-4E9B-BD09-12D24726BBAF"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.36:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DC6B7553-A96D-48BC-A555-DB94EB630AAA"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.37:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1B752A1B-08A6-4D76-9560-4B8287A43D8F"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.38:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2BD5AB04-7B94-4B00-907A-499A19176509"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.39:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "63AF805B-852D-412D-8B90-A4166041A0F9"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.40:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "741566D6-E3E0-43E6-8B12-19C1CD77C213"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.41:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D9BBD82A-39A6-4CC9-94FE-E3E81E0C06FC"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.42:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F561EBB8-231D-481F-B109-CFEF3F010FC5"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.43:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3495A795-48EA-4BE9-B6CF-DF934AE3EE1A"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.44:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4097E83B-5E58-4E70-B1B6-533B97C6405A"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.45:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CF37D299-CB0F-4F94-BBFE-4C1C966A4AB1"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.46:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9965D997-4F96-48BF-94CE-BA471ADE2A26"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.47:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ADDAB66F-038E-4955-81B7-A6E2157C0BA3"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.48:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F095537D-5045-4450-BCBF-4C93E6E042F7"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.49:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "710040CA-3DEF-484A-88FF-C44D17526B70"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.51:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6E8B5FDF-5ABE-4A17-B956-FE7CC3F3F1AC"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.52:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5434C6FD-3C1C-4272-9D8F-5F7AB8E68046"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.54:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5F907549-BEA6-46C7-A528-7E97A8655595"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.56:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C66DBB18-CA4B-439E-8D2E-8E5E6A42CF62"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.57:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7E24A976-B366-412C-8635-CD65687C3A0B"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.59:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "717CD257-B2A1-4DE6-83BA-6CE0F58B1B60"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.61:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "66BE9002-9D3A-4D58-A032-1E35364FAFD4"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.68:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "313D6BBA-A159-47DA-97E9-CE63AD1DEBF7"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.69:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0576D407-07F9-4163-8937-8D85974918A1"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.71:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "72F45D58-425C-4ABB-ADD3-2BBADA74A19F"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.72:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FC63BF1F-DB9F-4C4E-8460-40A801084020"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.74:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D2B3D4FD-9707-4B18-96CE-D7CF7EA5F881"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.77:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "694FBD5C-32E7-4E99-9BDD-8CE8E5D45CEB"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.80:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CF7E21C9-50F7-44A3-B642-4BFF4699EBD9"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.82:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AE68628B-FEBF-4A75-99C6-C6FA76A5989E"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.84:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6755C15D-08BD-47DA-B363-6F31F7DE5923"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.85:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FDF01221-5CE0-4559-83E6-3273D573F0DB"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.86:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "061A50AD-9D9F-44CA-867B-2E10B9282CE6"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.88:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "587440DE-F09E-4789-9B58-4FCDCBFA431E"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.90:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A3F1FFDF-509C-4608-9538-EFF07A5031C0"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.92:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5CE0FDEC-2FDB-4902-9904-F2F9E2E6226E"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.93:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "05F34690-1EFA-49D3-91B7-E3BD0B3D7056"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.95:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "44578154-8DFF-4EC7-834C-B54FD6149B91"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.96:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D2C2D488-342C-4CAC-A07D-2C198465BC32"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.98:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D1D63F62-CC1E-43CF-B1D6-192492796862"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.99:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B5366995-F5FD-4F6E-BFB7-D1E61E52B9DD"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.101:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CF55EAB7-A108-4B80-A969-D07A2EDA6184"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.103:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "17E16492-4A75-474C-9DEA-B150763843B9"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.104:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E431FC69-6C1B-475D-B646-FFB2210C438B"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.105:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1FA8FBB0-1004-40C2-AADD-4DE09CFE9326"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.106:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CF6CF0AA-AEBE-48FD-A83B-D9ADC25C323F"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.107:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1C6EC014-5EB1-4C19-B828-5DBA6A525194"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.108:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8E90CAB9-09DE-462B-96E4-4FAEC5642F66"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.109:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2B3CF5D9-E8DE-4751-A873-A3A6769BC19D"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.110:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B86895A1-98A7-46C8-8E52-889CB34EEEA7"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.111:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3E52314C-CB22-4702-8108-F855CEC349D8"}, {"criteria": "cpe:2.3:a:google:chrome:35.0.1916.112:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "379EB1A9-61DB-4A31-8568-DFB5BA3EE610"}], "operator": "OR"}]}], "sourceIdentifier": "chrome-cve-admin@google.com"}