Lucene search

ChromeCVE-2013-0924

HistoryMar 28, 2013 - 12:18 p.m.

CVE-2013-0924

2013-03-2812:18:52

CWE-264

Chrome

web.nvd.nist.gov

google chrome

extension

vulnerability

cve-2013-0924

nvd

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

Confidence

Low

EPSS

0.001

Percentile

50.8%

JSON

The extension functionality in Google Chrome before 26.0.1410.43 does not verify that use of the permissions API is consistent with file permissions, which has unspecified impact and attack vectors.

Affected configurations

Nvd

Node

googlechromeRange≤26.0.1410.42

googlechromeMatch26.0.1410.0

googlechromeMatch26.0.1410.1

googlechromeMatch26.0.1410.2

googlechromeMatch26.0.1410.3

googlechromeMatch26.0.1410.4

googlechromeMatch26.0.1410.5

googlechromeMatch26.0.1410.6

googlechromeMatch26.0.1410.7

googlechromeMatch26.0.1410.8

googlechromeMatch26.0.1410.9

googlechromeMatch26.0.1410.10

googlechromeMatch26.0.1410.11

googlechromeMatch26.0.1410.12

googlechromeMatch26.0.1410.14

googlechromeMatch26.0.1410.15

googlechromeMatch26.0.1410.16

googlechromeMatch26.0.1410.17

googlechromeMatch26.0.1410.18

googlechromeMatch26.0.1410.19

googlechromeMatch26.0.1410.20

googlechromeMatch26.0.1410.21

googlechromeMatch26.0.1410.22

googlechromeMatch26.0.1410.23

googlechromeMatch26.0.1410.24

googlechromeMatch26.0.1410.25

googlechromeMatch26.0.1410.26

googlechromeMatch26.0.1410.27

googlechromeMatch26.0.1410.28

googlechromeMatch26.0.1410.29

googlechromeMatch26.0.1410.30

googlechromeMatch26.0.1410.31

googlechromeMatch26.0.1410.32

googlechromeMatch26.0.1410.33

googlechromeMatch26.0.1410.34

googlechromeMatch26.0.1410.35

googlechromeMatch26.0.1410.36

googlechromeMatch26.0.1410.37

googlechromeMatch26.0.1410.38

googlechromeMatch26.0.1410.39

googlechromeMatch26.0.1410.40

googlechromeMatch26.0.1410.41

VendorProductVersionCPE
googlechrome*cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
googlechrome26.0.1410.0cpe:2.3:a:google:chrome:26.0.1410.0:*:*:*:*:*:*:*
googlechrome26.0.1410.1cpe:2.3:a:google:chrome:26.0.1410.1:*:*:*:*:*:*:*
googlechrome26.0.1410.2cpe:2.3:a:google:chrome:26.0.1410.2:*:*:*:*:*:*:*
googlechrome26.0.1410.3cpe:2.3:a:google:chrome:26.0.1410.3:*:*:*:*:*:*:*
googlechrome26.0.1410.4cpe:2.3:a:google:chrome:26.0.1410.4:*:*:*:*:*:*:*
googlechrome26.0.1410.5cpe:2.3:a:google:chrome:26.0.1410.5:*:*:*:*:*:*:*
googlechrome26.0.1410.6cpe:2.3:a:google:chrome:26.0.1410.6:*:*:*:*:*:*:*
googlechrome26.0.1410.7cpe:2.3:a:google:chrome:26.0.1410.7:*:*:*:*:*:*:*
googlechrome26.0.1410.8cpe:2.3:a:google:chrome:26.0.1410.8:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
google	chrome	*	cpe:2.3:a:google:chrome::::::::
google	chrome	26.0.1410.0	cpe:2.3:a:google:chrome:26.0.1410.0:::::::*
google	chrome	26.0.1410.1	cpe:2.3:a:google:chrome:26.0.1410.1:::::::*
google	chrome	26.0.1410.2	cpe:2.3:a:google:chrome:26.0.1410.2:::::::*
google	chrome	26.0.1410.3	cpe:2.3:a:google:chrome:26.0.1410.3:::::::*
google	chrome	26.0.1410.4	cpe:2.3:a:google:chrome:26.0.1410.4:::::::*
google	chrome	26.0.1410.5	cpe:2.3:a:google:chrome:26.0.1410.5:::::::*
google	chrome	26.0.1410.6	cpe:2.3:a:google:chrome:26.0.1410.6:::::::*
google	chrome	26.0.1410.7	cpe:2.3:a:google:chrome:26.0.1410.7:::::::*
google	chrome	26.0.1410.8	cpe:2.3:a:google:chrome:26.0.1410.8:::::::*