Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusTenable8063.PASL
HistoryDec 05, 2013 - 12:00 a.m.

Google Chrome < 31.0.1650.63 Multiple Vulnerabilities

2013-12-0500:00:00
Tenable
www.tenable.com
15

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.022 Low

EPSS

Percentile

89.5%

JSON

The remote host has Google Chrome browser installed. Versions of Google Chrome prior to 31.0.1650.63 are affected by multiple vulnerabilites, some of which include the following:

  • Use-after-free in editing (CVE-2013-6635)

  • Out-of-bounds read/write operations and a buffer overflow vulnerability in the Chrome v8 engine, which have been fixed in version 3.22.24.7, included in the updated version of Chrome (CVE-2013-6638, CVE-2013-6639, CVE-2013-6640)

  • Address bar spoofing that can be triggered via modal dialogs (CVE-2013-6636)

  • Session fixation attack via 302 redirects in one-click sign-in flow and gaia HTTP headers, which can allow a context-dependent attacker to hijack the user session. (CVE-2013-6634)

Binary data 8063.pasl
VendorProductVersionCPE
googlechromecpe:/a:google:chrome

Related

nessus 20
openvas 27
osv 1
securityvulns 9
chrome 1
debian 2
freebsd 1
mageia 2
fedora 13
nvd 6
cvelist 6
prion 6
cve 6
veracode 4
ubuntucve 6
debiancve 6
redhat 1
gentoo 1
nessus
nessus
Google Chrome < 31.0.1650.63 Multiple Vulnerabilities
2013-12-05 00:00:00
FreeBSD : chromium -- multiple vulnerabilities (79356040-5da4-11e3-829e-00262d5ed8ee)
2013-12-06 00:00:00
openSUSE Security Update : chromium (openSUSE-SU-2013:1933-1)
2014-06-13 00:00:00
openvas
openvas
Google Chrome Multiple Vulnerabilities-01 (Dec 2013) - Mac OS X
2013-12-10 00:00:00
Google Chrome Multiple Vulnerabilities-01 (Dec 2013) - Windows
2013-12-10 00:00:00
Google Chrome Multiple Vulnerabilities-01 (Dec 2013) - Linux
2013-12-10 00:00:00
osv
osv
chromium-browser - several
2013-12-07 00:00:00
securityvulns
securityvulns
Chromium / Google Chrome multiple security vulnerabilities
2013-12-09 00:00:00
[SECURITY] [DSA 2811-1] chromium-browser security update
2013-12-09 00:00:00
Apple WebKit / Safari multiple security vulnerabilities
2014-02-28 00:00:00
chrome
chrome
Stable Channel Update
2013-12-04 00:00:00
debian
debian
[SECURITY] [DSA 2811-1] chromium-browser security update
2013-12-08 03:57:17
[SECURITY] [DSA 2811-1] chromium-browser security update
2013-12-08 03:57:17
freebsd
freebsd
chromium -- multiple vulnerabilities
2013-12-04 00:00:00
mageia
mageia
Updated chromium-browser-stable fixes multiple vulnerabilities
2013-12-23 21:10:03
Updated nodejs package fixes security vulnerabilities
2014-01-06 05:20:19
fedora
fedora
[SECURITY] Fedora 20 Update: v8-3.14.5.10-3.fc20
2013-12-24 03:43:24
[SECURITY] Fedora 19 Update: v8-3.14.5.10-3.fc19
2013-12-24 03:36:06
[SECURITY] Fedora 18 Update: v8-3.14.5.10-3.fc18
2013-12-24 03:41:57
nvd
nvd
CVE-2013-6635
2013-12-07 00:55:03
CVE-2013-6639
2013-12-07 00:55:04
CVE-2013-6640
2013-12-07 00:55:04
cvelist
cvelist
CVE-2013-6636
2013-12-07 00:00:00
CVE-2013-6639
2013-12-07 00:00:00
CVE-2013-6635
2013-12-07 00:00:00
prion
prion
Out-of-bounds
2013-12-07 00:55:00
Session fixation
2013-12-07 00:55:00
Out-of-bounds
2013-12-07 00:55:00
cve
cve
CVE-2013-6634
2013-12-07 00:55:03
CVE-2013-6636
2013-12-07 00:55:03
CVE-2013-6640
2013-12-07 00:55:04
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:02:34
Denial Of Service (DoS)
2019-05-02 05:04:12
Denial Of Service (DoS)
2019-05-02 05:04:13
ubuntucve
ubuntucve
CVE-2013-6636
2013-12-07 00:00:00
CVE-2013-6634
2013-12-07 00:00:00
CVE-2013-6640
2013-12-07 00:00:00
debiancve
debiancve
CVE-2013-6634
2013-12-07 00:55:00
CVE-2013-6640
2013-12-07 00:55:00
CVE-2013-6639
2013-12-07 00:55:00
redhat
redhat
(RHSA-2014:1744) Moderate: v8314-v8 security update
2014-10-30 12:43:02
gentoo
gentoo
Chromium, V8: Multiple vulnerabilities
2014-03-05 00:00:00

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.022 Low

EPSS

Percentile

89.5%

JSON
Related for 8063.PASL
nessus20openvas27osv1securityvulns9chrome1debian2freebsd1mageia2fedora13nvd6cvelist6prion6cve6veracode4ubuntucve6debiancve6redhat1gentoo1