CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
68.1%
The PDF functionality in Google Chrome before 20.0.1132.57 does not properly handle JavaScript code, which allows remote attackers to cause a denial of service (incorrect object access) or possibly have unspecified other impact via a crafted document.
Vendor | Product | Version | CPE |
---|---|---|---|
chrome | * | cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* | |
chrome | 20.0.1132.0 | cpe:2.3:a:google:chrome:20.0.1132.0:*:*:*:*:*:*:* | |
chrome | 20.0.1132.1 | cpe:2.3:a:google:chrome:20.0.1132.1:*:*:*:*:*:*:* | |
chrome | 20.0.1132.2 | cpe:2.3:a:google:chrome:20.0.1132.2:*:*:*:*:*:*:* | |
chrome | 20.0.1132.3 | cpe:2.3:a:google:chrome:20.0.1132.3:*:*:*:*:*:*:* | |
chrome | 20.0.1132.4 | cpe:2.3:a:google:chrome:20.0.1132.4:*:*:*:*:*:*:* | |
chrome | 20.0.1132.5 | cpe:2.3:a:google:chrome:20.0.1132.5:*:*:*:*:*:*:* | |
chrome | 20.0.1132.6 | cpe:2.3:a:google:chrome:20.0.1132.6:*:*:*:*:*:*:* | |
chrome | 20.0.1132.7 | cpe:2.3:a:google:chrome:20.0.1132.7:*:*:*:*:*:*:* | |
chrome | 20.0.1132.8 | cpe:2.3:a:google:chrome:20.0.1132.8:*:*:*:*:*:*:* |