Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveAppleCVE-2010-1767
HistorySep 24, 2010 - 7:00 p.m.

CVE-2010-1767

2010-09-2419:00:04
CWE-352
apple
web.nvd.nist.gov
36
cve-2010-1767
cross-site request forgery
csrf
webkit
google chrome
xmlhttprequest

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

8.4

Confidence

High

EPSS

0.004

Percentile

73.0%

JSON

Cross-site request forgery (CSRF) vulnerability in loader/DocumentThreadableLoader.cpp in WebCore in WebKit before r57041, as used in Google Chrome before 4.1.249.1059, allows remote attackers to hijack the authentication of unspecified victims via a crafted synchronous preflight XMLHttpRequest operation.

Affected configurations

Nvd
Node
googlechromeRange4.1.249.1058
OR
googlechromeMatch1.0.154.53
OR
googlechromeMatch1.0.154.59
OR
googlechromeMatch1.0.154.64
OR
googlechromeMatch1.0.154.65
OR
googlechromeMatch2.0.169.0
OR
googlechromeMatch2.0.169.1
OR
googlechromeMatch2.0.170.0
OR
googlechromeMatch2.0.172.2
OR
googlechromeMatch2.0.172.8
OR
googlechromeMatch2.0.172.27
OR
googlechromeMatch2.0.172.28
OR
googlechromeMatch2.0.172.30
OR
googlechromeMatch2.0.172.33
OR
googlechromeMatch2.0.172.37
OR
googlechromeMatch2.0.172.38
OR
googlechromeMatch3.0.182.2
OR
googlechromeMatch3.0.195.2
OR
googlechromeMatch3.0.195.21
OR
googlechromeMatch3.0.195.24
OR
googlechromeMatch3.0.195.25
OR
googlechromeMatch3.0.195.27
OR
googlechromeMatch3.0.195.33
OR
googlechromeMatch3.0.195.36
OR
googlechromeMatch3.0.195.37
OR
googlechromeMatch3.0.195.38
OR
googlechromeMatch4.0.212.0
OR
googlechromeMatch4.0.212.1
OR
googlechromeMatch4.0.221.8
OR
googlechromeMatch4.0.222.0
OR
googlechromeMatch4.0.222.1
OR
googlechromeMatch4.0.222.5
OR
googlechromeMatch4.0.222.12
OR
googlechromeMatch4.0.223.0
OR
googlechromeMatch4.0.223.1
OR
googlechromeMatch4.0.223.2
OR
googlechromeMatch4.0.223.4
OR
googlechromeMatch4.0.223.5
OR
googlechromeMatch4.0.223.7
OR
googlechromeMatch4.0.223.8
OR
googlechromeMatch4.0.223.9
OR
googlechromeMatch4.0.224.0
OR
googlechromeMatch4.0.229.1
OR
googlechromeMatch4.0.235.0
OR
googlechromeMatch4.0.236.0
OR
googlechromeMatch4.0.237.0
OR
googlechromeMatch4.0.237.1
OR
googlechromeMatch4.0.239.0
OR
googlechromeMatch4.0.240.0
OR
googlechromeMatch4.0.241.0
OR
googlechromeMatch4.0.242.0
OR
googlechromeMatch4.0.243.0
OR
googlechromeMatch4.0.244.0
OR
googlechromeMatch4.0.245.0
OR
googlechromeMatch4.0.245.1
OR
googlechromeMatch4.0.246.0
OR
googlechromeMatch4.0.247.0
OR
googlechromeMatch4.0.248.0
OR
googlechromeMatch4.0.249.0
OR
googlechromeMatch4.0.249.1
OR
googlechromeMatch4.0.249.2
OR
googlechromeMatch4.0.249.3
OR
googlechromeMatch4.0.249.4
OR
googlechromeMatch4.0.249.5
OR
googlechromeMatch4.0.249.6
OR
googlechromeMatch4.0.249.7
OR
googlechromeMatch4.0.249.8
OR
googlechromeMatch4.0.249.9
OR
googlechromeMatch4.0.249.10
OR
googlechromeMatch4.0.249.11
OR
googlechromeMatch4.0.249.12
OR
googlechromeMatch4.0.249.14
OR
googlechromeMatch4.0.249.16
OR
googlechromeMatch4.0.249.17
OR
googlechromeMatch4.0.249.18
OR
googlechromeMatch4.0.249.19
OR
googlechromeMatch4.0.249.20
OR
googlechromeMatch4.0.249.21
OR
googlechromeMatch4.0.249.22
OR
googlechromeMatch4.0.249.23
OR
googlechromeMatch4.0.249.24
OR
googlechromeMatch4.0.249.25
OR
googlechromeMatch4.0.249.26
OR
googlechromeMatch4.0.249.27
OR
googlechromeMatch4.0.249.28
OR
googlechromeMatch4.0.249.29
OR
googlechromeMatch4.0.249.30
OR
googlechromeMatch4.0.249.31
OR
googlechromeMatch4.0.249.32
OR
googlechromeMatch4.0.249.33
OR
googlechromeMatch4.0.249.34
OR
googlechromeMatch4.0.249.35
OR
googlechromeMatch4.0.249.36
OR
googlechromeMatch4.0.249.37
OR
googlechromeMatch4.0.249.38
OR
googlechromeMatch4.0.249.39
OR
googlechromeMatch4.0.249.40
OR
googlechromeMatch4.0.249.41
OR
googlechromeMatch4.0.249.42
OR
googlechromeMatch4.0.249.43
OR
googlechromeMatch4.0.249.44
OR
googlechromeMatch4.0.249.45
OR
googlechromeMatch4.0.249.46
OR
googlechromeMatch4.0.249.47
OR
googlechromeMatch4.0.249.48
OR
googlechromeMatch4.0.249.49
OR
googlechromeMatch4.0.249.50
OR
googlechromeMatch4.0.249.51
OR
googlechromeMatch4.0.249.52
OR
googlechromeMatch4.0.249.53
OR
googlechromeMatch4.0.249.54
OR
googlechromeMatch4.0.249.55
OR
googlechromeMatch4.0.249.56
OR
googlechromeMatch4.0.249.57
OR
googlechromeMatch4.0.249.58
OR
googlechromeMatch4.0.249.59
OR
googlechromeMatch4.0.249.61
OR
googlechromeMatch4.0.249.62
OR
googlechromeMatch4.0.249.63
OR
googlechromeMatch4.0.249.64
OR
googlechromeMatch4.0.249.65
OR
googlechromeMatch4.0.249.66
OR
googlechromeMatch4.0.249.67
OR
googlechromeMatch4.0.249.68
OR
googlechromeMatch4.0.249.69
OR
googlechromeMatch4.0.249.70
OR
googlechromeMatch4.0.249.71
OR
googlechromeMatch4.0.249.72
OR
googlechromeMatch4.0.249.73
OR
googlechromeMatch4.0.249.74
OR
googlechromeMatch4.0.249.75
OR
googlechromeMatch4.0.249.76
OR
googlechromeMatch4.0.249.77
OR
googlechromeMatch4.0.249.78
OR
googlechromeMatch4.0.249.78beta
OR
googlechromeMatch4.0.249.79
OR
googlechromeMatch4.0.249.80
OR
googlechromeMatch4.0.249.81
OR
googlechromeMatch4.0.249.82
OR
googlechromeMatch4.0.249.89
OR
googlechromeMatch4.0.250.0
OR
googlechromeMatch4.0.250.2
OR
googlechromeMatch4.0.251.0
OR
googlechromeMatch4.0.252.0
OR
googlechromeMatch4.0.254.0
OR
googlechromeMatch4.0.255.0
OR
googlechromeMatch4.0.256.0
OR
googlechromeMatch4.0.257.0
OR
googlechromeMatch4.0.258.0
OR
googlechromeMatch4.0.259.0
OR
googlechromeMatch4.0.260.0
OR
googlechromeMatch4.0.261.0
OR
googlechromeMatch4.0.262.0
OR
googlechromeMatch4.0.263.0
OR
googlechromeMatch4.0.264.0
OR
googlechromeMatch4.0.265.0
OR
googlechromeMatch4.0.266.0
OR
googlechromeMatch4.0.267.0
OR
googlechromeMatch4.0.268.0
OR
googlechromeMatch4.0.269.0
OR
googlechromeMatch4.0.271.0
OR
googlechromeMatch4.0.272.0
OR
googlechromeMatch4.0.275.0
OR
googlechromeMatch4.0.275.1
OR
googlechromeMatch4.0.276.0
OR
googlechromeMatch4.0.277.0
OR
googlechromeMatch4.0.278.0
OR
googlechromeMatch4.0.286.0
OR
googlechromeMatch4.0.287.0
OR
googlechromeMatch4.0.288.0
OR
googlechromeMatch4.0.288.1
OR
googlechromeMatch4.0.289.0
OR
googlechromeMatch4.0.290.0
OR
googlechromeMatch4.0.292.0
OR
googlechromeMatch4.0.294.0
OR
googlechromeMatch4.0.295.0
OR
googlechromeMatch4.0.296.0
OR
googlechromeMatch4.0.299.0
OR
googlechromeMatch4.0.300.0
OR
googlechromeMatch4.0.301.0
OR
googlechromeMatch4.0.302.0
OR
googlechromeMatch4.0.302.1
OR
googlechromeMatch4.0.302.2
OR
googlechromeMatch4.0.302.3
OR
googlechromeMatch4.0.303.0
OR
googlechromeMatch4.0.304.0
OR
googlechromeMatch4.0.305.0
OR
googlechromeMatch4.1.249.0
OR
googlechromeMatch4.1.249.1001
OR
googlechromeMatch4.1.249.1004
OR
googlechromeMatch4.1.249.1006
OR
googlechromeMatch4.1.249.1007
OR
googlechromeMatch4.1.249.1008
OR
googlechromeMatch4.1.249.1009
OR
googlechromeMatch4.1.249.1010
OR
googlechromeMatch4.1.249.1011
OR
googlechromeMatch4.1.249.1012
OR
googlechromeMatch4.1.249.1013
OR
googlechromeMatch4.1.249.1014
OR
googlechromeMatch4.1.249.1015
OR
googlechromeMatch4.1.249.1016
OR
googlechromeMatch4.1.249.1017
OR
googlechromeMatch4.1.249.1018
OR
googlechromeMatch4.1.249.1019
OR
googlechromeMatch4.1.249.1020
OR
googlechromeMatch4.1.249.1021
OR
googlechromeMatch4.1.249.1022
OR
googlechromeMatch4.1.249.1023
OR
googlechromeMatch4.1.249.1024
OR
googlechromeMatch4.1.249.1025
OR
googlechromeMatch4.1.249.1026
OR
googlechromeMatch4.1.249.1027
OR
googlechromeMatch4.1.249.1028
OR
googlechromeMatch4.1.249.1029
OR
googlechromeMatch4.1.249.1030
OR
googlechromeMatch4.1.249.1031
OR
googlechromeMatch4.1.249.1032
OR
googlechromeMatch4.1.249.1033
OR
googlechromeMatch4.1.249.1034
OR
googlechromeMatch4.1.249.1035
OR
googlechromeMatch4.1.249.1036
OR
googlechromeMatch4.1.249.1042
OR
googlechromeMatch4.1.249.1045
OR
googlechromeMatch4.1.249.1046
OR
googlechromeMatch4.1.249.1047
OR
googlechromeMatch4.1.249.1048
OR
googlechromeMatch4.1.249.1049
OR
googlechromeMatch4.1.249.1050
OR
googlechromeMatch4.1.249.1051
OR
googlechromeMatch4.1.249.1052
OR
googlechromeMatch4.1.249.1053
OR
googlechromeMatch4.1.249.1054
OR
googlechromeMatch4.1.249.1055
OR
googlechromeMatch4.1.249.1056
OR
googlechromeMatch4.1.249.1057
VendorProductVersionCPE
googlechrome*cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
googlechrome1.0.154.53cpe:2.3:a:google:chrome:1.0.154.53:*:*:*:*:*:*:*
googlechrome1.0.154.59cpe:2.3:a:google:chrome:1.0.154.59:*:*:*:*:*:*:*
googlechrome1.0.154.64cpe:2.3:a:google:chrome:1.0.154.64:*:*:*:*:*:*:*
googlechrome1.0.154.65cpe:2.3:a:google:chrome:1.0.154.65:*:*:*:*:*:*:*
googlechrome2.0.169.0cpe:2.3:a:google:chrome:2.0.169.0:*:*:*:*:*:*:*
googlechrome2.0.169.1cpe:2.3:a:google:chrome:2.0.169.1:*:*:*:*:*:*:*
googlechrome2.0.170.0cpe:2.3:a:google:chrome:2.0.170.0:*:*:*:*:*:*:*
googlechrome2.0.172.2cpe:2.3:a:google:chrome:2.0.172.2:*:*:*:*:*:*:*
googlechrome2.0.172.8cpe:2.3:a:google:chrome:2.0.172.8:*:*:*:*:*:*:*
Rows per page:
1-10 of 2351

Related

nvd 2
prion 2
debiancve 1
cvelist 1
ubuntucve 1
cve 1
openvas 19
nessus 9
freebsd 1
fedora 6
nvd
nvd
CVE-2010-1767
2010-09-24 19:00:04
CVE-2010-1501
2010-04-23 14:30:01
prion
prion
Cross site request forgery (csrf)
2010-09-24 19:00:00
Design/Logic Flaw
2010-04-23 14:30:00
debiancve
debiancve
CVE-2010-1767
2010-09-24 19:00:00
cvelist
cvelist
CVE-2010-1767
2010-09-24 18:00:00
ubuntucve
ubuntucve
CVE-2010-1767
2010-09-24 00:00:00
cve
cve
CVE-2010-1501
2010-04-23 14:30:01
openvas
openvas
Google Chrome Multiple Vulnerabilities (win)
2010-04-30 00:00:00
Google Chrome Multiple Vulnerabilities (win)
2010-04-30 00:00:00
FreeBSD Ports: webkit-gtk2
2010-07-22 00:00:00
nessus
nessus
Google Chrome < 4.1.249.1059 Multiple Vulnerabilities
2010-04-23 00:00:00
openSUSE Security Update : libwebkit (openSUSE-SU-2010:0458-1)
2014-06-13 00:00:00
FreeBSD : webkit-gtk2 -- Multiple vulnerabilities (19419b3b-92bd-11df-b140-0015f2db7bde)
2010-07-19 00:00:00
freebsd
freebsd
webkit-gtk2 -- Multiple vulnerabilities
2010-07-16 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: webkitgtk-1.2.4-1.fc13
2010-09-15 05:40:48
[SECURITY] Fedora 12 Update: webkitgtk-1.2.4-1.fc12
2010-09-21 01:43:18
[SECURITY] Fedora 13 Update: webkitgtk-1.2.5-1.fc13
2010-10-19 07:21:56

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

8.4

Confidence

High

EPSS

0.004

Percentile

73.0%

JSON
Related for CVE-2010-1767
nvd2prion2debiancve1cvelist1ubuntucve1cve1openvas19nessus9freebsd1fedora6