Lucene search

[email protected]CVE-2011-2353

HistoryNov 07, 2019 - 5:15 p.m.

CVE-2011-2353

2019-11-0717:15:13

CWE-416

[email protected]

web.nvd.nist.gov

cve

2011

2353

vulnerability

webkit

google chrome

blink m13

documentwriter

replacedocument

nvd

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

0.002 Low

EPSS

Percentile

53.0%

JSON

Use after free vulnerability in documentloader in WebKit in Google Chrome before Blink M13 in DocumentWriter::replaceDocument function.

Affected configurations

NVD

Node

googleblinkRange<m13chromium

CPENameOperatorVersion
google:blinkgoogle blinkltm13

CPE	Name	Operator	Version
google:blink	google blink	lt	m13

CNA Affected

[
  {
    "product": "Chrome",
    "vendor": "Google",
    "versions": [
      {
        "status": "affected",
        "version": "before Blink M13"
      }
    ]
  }
]

References

trac.webkit.org/changeset/87959

trac.webkit.org/changeset/88197

trac.webkit.org/changeset/88813

bugs.chromium.org/p/chromium/issues/detail?id=84946

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

0.002 Low

EPSS

Percentile

53.0%

JSON

Related for CVE-2011-2353

prion1 nvd1 ubuntucve1 cvelist1