Remote UI Spoofing Vulnerability in Google Chrome

Remote UI Spoofing Vulnerability in Google Chrome

CVE-2014-1748 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

The ScrollView::paint function in platform/scroll/ScrollView.cpp in Blink, as used in Google Chrome before 35.0.1916.114, allows remote attackers to spoof the UI by extending scrollbar painting into the parent frame.

Learn more about our Cis Benchmark Audit For Google Chrome.