[email protected]CVE-2011-3063

HistoryMar 30, 2012 - 10:55 p.m.

CVE-2011-3063

2012-03-3022:55:00

CWE-20

[email protected]

web.nvd.nist.gov

cve-2011-3063

google chrome

security vulnerability

navigation requests

remote attack vectors

nvd

6.1 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.004 Low

EPSS

Percentile

74.8%

JSON

Google Chrome before 18.0.1025.142 does not properly validate the renderer’s navigation requests, which has unspecified impact and remote attack vectors.

CPENameOperatorVersion
google:chromegoogle chromelt18.0.1025.142

CPE	Name	Operator	Version
google:chrome	google chrome	lt	18.0.1025.142

References

code.google.com/p/chromium/issues/detail?id=117417

googlechromereleases.blogspot.com/2012/03/stable-channel-release-and-beta-channel.html

secunia.com/advisories/48618

secunia.com/advisories/48691

secunia.com/advisories/48763

www.securityfocus.com/bid/52762

www.securitytracker.com/id?1026877

exchange.xforce.ibmcloud.com/vulnerabilities/74413

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15226

6.1 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.004 Low

EPSS

Percentile

74.8%

JSON

Related for CVE-2011-3063

debiancve1 prion1 ubuntucve1 openvas10 seebug1 gentoo1 nessus6 freebsd1 chrome1 threatpost1