Lucene search

K
cve[email protected]CVE-2012-2854
HistoryAug 06, 2012 - 3:55 p.m.

CVE-2012-2854

2012-08-0615:55:01
CWE-200
web.nvd.nist.gov
25
cve-2012-2854
google chrome
mac os x
linux
windows
chrome frame
sensitive information
pointer values
webui renderer process
nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

5.7 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

59.5%

Google Chrome before 21.0.1180.57 on Mac OS X and Linux, and before 21.0.1180.60 on Windows and Chrome Frame, allows remote attackers to obtain potentially sensitive information about pointer values by leveraging access to a WebUI renderer process.

Affected configurations

NVD
Node
googlechromeRange21.0.1180.56
OR
googlechromeMatch21.0.1180.0
OR
googlechromeMatch21.0.1180.1
OR
googlechromeMatch21.0.1180.2
OR
googlechromeMatch21.0.1180.31
OR
googlechromeMatch21.0.1180.32
OR
googlechromeMatch21.0.1180.33
OR
googlechromeMatch21.0.1180.34
OR
googlechromeMatch21.0.1180.35
OR
googlechromeMatch21.0.1180.36
OR
googlechromeMatch21.0.1180.37
OR
googlechromeMatch21.0.1180.38
OR
googlechromeMatch21.0.1180.39
OR
googlechromeMatch21.0.1180.41
OR
googlechromeMatch21.0.1180.46
OR
googlechromeMatch21.0.1180.47
OR
googlechromeMatch21.0.1180.48
OR
googlechromeMatch21.0.1180.49
OR
googlechromeMatch21.0.1180.50
OR
googlechromeMatch21.0.1180.51
OR
googlechromeMatch21.0.1180.52
OR
googlechromeMatch21.0.1180.53
OR
googlechromeMatch21.0.1180.54
OR
googlechromeMatch21.0.1180.55
AND
applemac_os_x
OR
linuxlinux_kernel
Node
googlechromeRange21.0.1180.59
OR
googlechromeMatch21.0.1180.0
OR
googlechromeMatch21.0.1180.1
OR
googlechromeMatch21.0.1180.2
OR
googlechromeMatch21.0.1180.31
OR
googlechromeMatch21.0.1180.32
OR
googlechromeMatch21.0.1180.33
OR
googlechromeMatch21.0.1180.34
OR
googlechromeMatch21.0.1180.35
OR
googlechromeMatch21.0.1180.36
OR
googlechromeMatch21.0.1180.37
OR
googlechromeMatch21.0.1180.38
OR
googlechromeMatch21.0.1180.39
OR
googlechromeMatch21.0.1180.41
OR
googlechromeMatch21.0.1180.46
OR
googlechromeMatch21.0.1180.47
OR
googlechromeMatch21.0.1180.48
OR
googlechromeMatch21.0.1180.49
OR
googlechromeMatch21.0.1180.50
OR
googlechromeMatch21.0.1180.51
OR
googlechromeMatch21.0.1180.52
OR
googlechromeMatch21.0.1180.53
OR
googlechromeMatch21.0.1180.54
OR
googlechromeMatch21.0.1180.55
OR
googlechromeMatch21.0.1180.56
OR
googlechromeMatch21.0.1180.57
AND
googleframeMatch-
OR
microsoftwindows

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

5.7 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

59.5%