CVE-2013-0884

2013-02-2321:55:01

Chrome

web.nvd.nist.gov

cve-2013-0884

google chrome

native client

nacl

windows

linux

mac os x

security vulnerability

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

6.2

Confidence

Low

EPSS

0.002

Percentile

55.4%

JSON

Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, does not properly load Native Client (aka NaCl) code, which has unspecified impact and attack vectors.

Affected configurations

Nvd

Node

opensuseopensuseMatch12.1

opensuseopensuseMatch12.2

Node

googlechromeRange<25.0.1364.97

AND

linuxlinux_kernelMatch-

microsoftwindowsMatch-

Node

googlechromeRange<25.0.1364.99

AND

applemac_os_xMatch-

VendorProductVersionCPE
opensuseopensuse12.1cpe:2.3:o:opensuse:opensuse:12.1:*:*:*:*:*:*:*
opensuseopensuse12.2cpe:2.3:o:opensuse:opensuse:12.2:*:*:*:*:*:*:*
googlechrome*cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
linuxlinux_kernel-cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
microsoftwindows-cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
applemac_os_x-cpe:2.3:o:apple:mac_os_x:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
opensuse	opensuse	12.1	cpe:2.3:o:opensuse:opensuse:12.1:::::::*
opensuse	opensuse	12.2	cpe:2.3:o:opensuse:opensuse:12.2:::::::*
google	chrome	*	cpe:2.3:a:google:chrome::::::::
linux	linux_kernel	-	cpe:2.3:o:linux:linux_kernel:-:::::::*
microsoft	windows	-	cpe:2.3:o:microsoft:windows:-:::::::*
apple	mac_os_x	-	cpe:2.3:o:apple:mac_os_x:-:::::::*