Lucene search

[email protected]NVD:CVE-2012-2872

HistoryAug 31, 2012 - 7:55 p.m.

CVE-2012-2872

2012-08-3119:55:01

CWE-79

[email protected]

web.nvd.nist.gov

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

7.4 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.4%

JSON

Cross-site scripting (XSS) vulnerability in an SSL interstitial page in Google Chrome before 21.0.1180.89 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected configurations

NVD

Node

opensuseopensuseMatch12.1

opensuseopensuseMatch12.2

Node

googlechromeRange≤21.0.1180.88

googlechromeMatch21.0.1180.0

googlechromeMatch21.0.1180.1

googlechromeMatch21.0.1180.2

googlechromeMatch21.0.1180.31

googlechromeMatch21.0.1180.32

googlechromeMatch21.0.1180.33

googlechromeMatch21.0.1180.34

googlechromeMatch21.0.1180.35

googlechromeMatch21.0.1180.36

googlechromeMatch21.0.1180.37

googlechromeMatch21.0.1180.38

googlechromeMatch21.0.1180.39

googlechromeMatch21.0.1180.41

googlechromeMatch21.0.1180.46

googlechromeMatch21.0.1180.47

googlechromeMatch21.0.1180.48

googlechromeMatch21.0.1180.49

googlechromeMatch21.0.1180.50

googlechromeMatch21.0.1180.51

googlechromeMatch21.0.1180.52

googlechromeMatch21.0.1180.53

googlechromeMatch21.0.1180.54

googlechromeMatch21.0.1180.55

googlechromeMatch21.0.1180.56

googlechromeMatch21.0.1180.57

googlechromeMatch21.0.1180.59

googlechromeMatch21.0.1180.60

googlechromeMatch21.0.1180.61

googlechromeMatch21.0.1180.62

googlechromeMatch21.0.1180.63

googlechromeMatch21.0.1180.64

googlechromeMatch21.0.1180.68

googlechromeMatch21.0.1180.69

googlechromeMatch21.0.1180.70

googlechromeMatch21.0.1180.71

googlechromeMatch21.0.1180.72

googlechromeMatch21.0.1180.73

googlechromeMatch21.0.1180.74

googlechromeMatch21.0.1180.75

googlechromeMatch21.0.1180.76

googlechromeMatch21.0.1180.77

googlechromeMatch21.0.1180.78

googlechromeMatch21.0.1180.79

googlechromeMatch21.0.1180.80

googlechromeMatch21.0.1180.81

googlechromeMatch21.0.1180.82

googlechromeMatch21.0.1180.83

googlechromeMatch21.0.1180.84

googlechromeMatch21.0.1180.85

googlechromeMatch21.0.1180.86

googlechromeMatch21.0.1180.87

References

code.google.com/p/chromium/issues/detail?id=142956

googlechromereleases.blogspot.com/2012/08/stable-channel-update_30.html

lists.opensuse.org/opensuse-security-announce/2012-09/msg00030.html

osvdb.org/85037

exchange.xforce.ibmcloud.com/vulnerabilities/78181

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15853

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

7.4 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.4%

JSON

Related for NVD:CVE-2012-2872

cve1 cvelist1 debiancve1 prion1 ubuntucve1 openvas12 chrome1 freebsd1 suse1 nessus6 gentoo1