Google · Google Chrome · CVE-2014-7948
**Name of the Vulnerable Software and Affected Versions**
Google Chrome versions prior to 40.0.2214.91
**Description**
The issue concerns a function that proceeds with AppCache caching for SSL sessions even when there is an X.509 certificate error. This allows attackers to spoof HTML5 application content via a crafted certificate.
**Recommendations**
For versions prior to 40.0.2214.91, update to version 40.0.2214.91 or later to resolve the issue.