Lucene search
HistoryJan 15, 2013 - 9:55 p.m.
CVE-2012-5146
google chrome
same origin policy
bypass
cve-2012-5146
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
6.1 Medium
AI Score
Confidence
Low
0.007 Low
EPSS
Percentile
80.6%
Google Chrome before 24.0.1312.52 allows remote attackers to bypass the Same Origin Policy via a malformed URL.
Affected configurations
Node
opensuseopensuseMatch12.1
ORopensuseopensuseMatch12.2
Node
googlechromeRange≤24.0.1312.51
ORgooglechromeMatch24.0.1272.0
ORgooglechromeMatch24.0.1272.1
ORgooglechromeMatch24.0.1273.0
ORgooglechromeMatch24.0.1274.0
ORgooglechromeMatch24.0.1275.0
ORgooglechromeMatch24.0.1276.0
ORgooglechromeMatch24.0.1276.1
ORgooglechromeMatch24.0.1277.0
ORgooglechromeMatch24.0.1278.0
ORgooglechromeMatch24.0.1279.0
ORgooglechromeMatch24.0.1280.0
ORgooglechromeMatch24.0.1281.0
ORgooglechromeMatch24.0.1281.1
ORgooglechromeMatch24.0.1281.2
ORgooglechromeMatch24.0.1281.3
ORgooglechromeMatch24.0.1282.0
ORgooglechromeMatch24.0.1283.0
ORgooglechromeMatch24.0.1284.0
ORgooglechromeMatch24.0.1284.1
ORgooglechromeMatch24.0.1284.2
ORgooglechromeMatch24.0.1285.0
ORgooglechromeMatch24.0.1285.1
ORgooglechromeMatch24.0.1285.2
ORgooglechromeMatch24.0.1286.0
ORgooglechromeMatch24.0.1286.1
ORgooglechromeMatch24.0.1287.0
ORgooglechromeMatch24.0.1287.1
ORgooglechromeMatch24.0.1288.0
ORgooglechromeMatch24.0.1288.1
ORgooglechromeMatch24.0.1289.0
ORgooglechromeMatch24.0.1289.1
ORgooglechromeMatch24.0.1290.0
ORgooglechromeMatch24.0.1291.0
ORgooglechromeMatch24.0.1292.0
ORgooglechromeMatch24.0.1293.0
ORgooglechromeMatch24.0.1294.0
ORgooglechromeMatch24.0.1295.0
ORgooglechromeMatch24.0.1296.0
ORgooglechromeMatch24.0.1297.0
ORgooglechromeMatch24.0.1298.0
ORgooglechromeMatch24.0.1299.0
ORgooglechromeMatch24.0.1300.0
ORgooglechromeMatch24.0.1301.0
ORgooglechromeMatch24.0.1301.2
ORgooglechromeMatch24.0.1302.0
ORgooglechromeMatch24.0.1303.0
ORgooglechromeMatch24.0.1304.0
ORgooglechromeMatch24.0.1304.1
ORgooglechromeMatch24.0.1305.0
ORgooglechromeMatch24.0.1305.1
ORgooglechromeMatch24.0.1305.2
ORgooglechromeMatch24.0.1305.3
ORgooglechromeMatch24.0.1305.4
ORgooglechromeMatch24.0.1306.0
ORgooglechromeMatch24.0.1306.1
ORgooglechromeMatch24.0.1307.0
ORgooglechromeMatch24.0.1307.1
ORgooglechromeMatch24.0.1308.0
ORgooglechromeMatch24.0.1309.0
ORgooglechromeMatch24.0.1310.0
ORgooglechromeMatch24.0.1311.0
ORgooglechromeMatch24.0.1311.1
ORgooglechromeMatch24.0.1312.0
ORgooglechromeMatch24.0.1312.1
ORgooglechromeMatch24.0.1312.4
ORgooglechromeMatch24.0.1312.5
ORgooglechromeMatch24.0.1312.6
ORgooglechromeMatch24.0.1312.7
ORgooglechromeMatch24.0.1312.8
ORgooglechromeMatch24.0.1312.9
ORgooglechromeMatch24.0.1312.10
ORgooglechromeMatch24.0.1312.11
ORgooglechromeMatch24.0.1312.12
ORgooglechromeMatch24.0.1312.13
ORgooglechromeMatch24.0.1312.14
ORgooglechromeMatch24.0.1312.15
ORgooglechromeMatch24.0.1312.16
ORgooglechromeMatch24.0.1312.17
ORgooglechromeMatch24.0.1312.18
ORgooglechromeMatch24.0.1312.19
ORgooglechromeMatch24.0.1312.20
ORgooglechromeMatch24.0.1312.21
ORgooglechromeMatch24.0.1312.22
ORgooglechromeMatch24.0.1312.23
ORgooglechromeMatch24.0.1312.24
ORgooglechromeMatch24.0.1312.25
ORgooglechromeMatch24.0.1312.26
ORgooglechromeMatch24.0.1312.27
ORgooglechromeMatch24.0.1312.28
ORgooglechromeMatch24.0.1312.29
ORgooglechromeMatch24.0.1312.30
ORgooglechromeMatch24.0.1312.31
ORgooglechromeMatch24.0.1312.32
ORgooglechromeMatch24.0.1312.33
ORgooglechromeMatch24.0.1312.34
ORgooglechromeMatch24.0.1312.35
ORgooglechromeMatch24.0.1312.36
ORgooglechromeMatch24.0.1312.37
ORgooglechromeMatch24.0.1312.38
ORgooglechromeMatch24.0.1312.39
ORgooglechromeMatch24.0.1312.40
ORgooglechromeMatch24.0.1312.41
ORgooglechromeMatch24.0.1312.42
ORgooglechromeMatch24.0.1312.43
ORgooglechromeMatch24.0.1312.44
ORgooglechromeMatch24.0.1312.45
ORgooglechromeMatch24.0.1312.46
ORgooglechromeMatch24.0.1312.47
ORgooglechromeMatch24.0.1312.48
ORgooglechromeMatch24.0.1312.49
ORgooglechromeMatch24.0.1312.50
| CPE | Name | Operator | Version |
|---|---|---|---|
| opensuse:opensuse | opensuse | eq | 12.1 |
| opensuse:opensuse | opensuse | eq | 12.2 |
Related
ubuntucve
ubuntucve
CVE-2012-5146
2013-01-15 00:00:00
debiancve
debiancve
CVE-2012-5146
2013-01-15 21:55:00
nvd
nvd
CVE-2012-5146
2013-01-15 21:55:01
prion
prion
Design/Logic Flaw
2013-01-15 21:55:00
cvelist
cvelist
CVE-2012-5146
2013-01-15 21:00:00
nessus
nessus
openSUSE Security Update : chromium (openSUSE-SU-2013:0236-1)
2014-06-13 00:00:00
FreeBSD : chromium -- multiple vulnerabilities (46bd747b-5b84-11e2-b06d-00262d5ed8ee)
2013-01-11 00:00:00
Google Chrome < 24.0.1312.52 Multiple Vulnerabilities
2012-01-10 00:00:00
openvas
openvas
Google Chrome Multiple Vulnerabilities-01 (Jan 2013) - Mac OS X
2013-01-17 00:00:00
Google Chrome Multiple Vulnerabilities-01 Jan2013 (Linux)
2013-01-17 00:00:00
Google Chrome Multiple Vulnerabilities-01 Jan2013 (MAC OS X)
2013-01-17 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2013-01-10 00:00:00
threatpost
threatpost
Chrome 24 Fixes More Than 20 Flaws
2013-01-10 19:41:36
chrome
chrome
Stable Channel Update
2013-01-10 00:00:00
gentoo
gentoo
Chromium, V8: Multiple vulnerabilities
2013-09-24 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
6.1 Medium
AI Score
Confidence
Low
0.007 Low
EPSS
Percentile
80.6%
Related for CVE-2012-5146