Lucene search
HistoryNov 07, 2012 - 11:43 a.m.
CVE-2012-5117
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.2
Confidence
Low
EPSS
0.002
Percentile
61.2%
Google Chrome before 23.0.1271.64 does not properly restrict the loading of an SVG subresource in the context of an IMG element, which has unspecified impact and remote attack vectors.
Affected configurations
Node
googlechromeRange≤23.0.1271.62
ORgooglechromeMatch23.0.1271.0
ORgooglechromeMatch23.0.1271.1
ORgooglechromeMatch23.0.1271.2
ORgooglechromeMatch23.0.1271.3
ORgooglechromeMatch23.0.1271.4
ORgooglechromeMatch23.0.1271.5
ORgooglechromeMatch23.0.1271.6
ORgooglechromeMatch23.0.1271.7
ORgooglechromeMatch23.0.1271.8
ORgooglechromeMatch23.0.1271.9
ORgooglechromeMatch23.0.1271.10
ORgooglechromeMatch23.0.1271.11
ORgooglechromeMatch23.0.1271.12
ORgooglechromeMatch23.0.1271.13
ORgooglechromeMatch23.0.1271.14
ORgooglechromeMatch23.0.1271.15
ORgooglechromeMatch23.0.1271.16
ORgooglechromeMatch23.0.1271.17
ORgooglechromeMatch23.0.1271.18
ORgooglechromeMatch23.0.1271.19
ORgooglechromeMatch23.0.1271.20
ORgooglechromeMatch23.0.1271.21
ORgooglechromeMatch23.0.1271.22
ORgooglechromeMatch23.0.1271.23
ORgooglechromeMatch23.0.1271.24
ORgooglechromeMatch23.0.1271.26
ORgooglechromeMatch23.0.1271.30
ORgooglechromeMatch23.0.1271.31
ORgooglechromeMatch23.0.1271.32
ORgooglechromeMatch23.0.1271.33
ORgooglechromeMatch23.0.1271.35
ORgooglechromeMatch23.0.1271.36
ORgooglechromeMatch23.0.1271.37
ORgooglechromeMatch23.0.1271.38
ORgooglechromeMatch23.0.1271.39
ORgooglechromeMatch23.0.1271.40
ORgooglechromeMatch23.0.1271.41
ORgooglechromeMatch23.0.1271.44
ORgooglechromeMatch23.0.1271.45
ORgooglechromeMatch23.0.1271.46
ORgooglechromeMatch23.0.1271.49
ORgooglechromeMatch23.0.1271.50
ORgooglechromeMatch23.0.1271.51
ORgooglechromeMatch23.0.1271.52
ORgooglechromeMatch23.0.1271.53
ORgooglechromeMatch23.0.1271.54
ORgooglechromeMatch23.0.1271.55
ORgooglechromeMatch23.0.1271.56
ORgooglechromeMatch23.0.1271.57
ORgooglechromeMatch23.0.1271.58
ORgooglechromeMatch23.0.1271.59
ORgooglechromeMatch23.0.1271.60
ORgooglechromeMatch23.0.1271.61
Related
cvelist
cvelist
CVE-2012-5117
2012-11-07 11:00:00
prion
prion
Design/Logic Flaw
2012-11-07 11:43:00
debiancve
debiancve
CVE-2012-5117
2012-11-07 11:43:00
ubuntucve
ubuntucve
CVE-2012-5117
2012-11-07 00:00:00
cve
cve
CVE-2012-5117
2012-11-07 11:43:14
openvas
openvas
Google Chrome Multiple Vulnerabilities - Nov2012 (Windows)
2012-11-09 00:00:00
Google Chrome Multiple Vulnerabilities - Nov2012 (Linux)
2012-11-09 00:00:00
Google Chrome Multiple Vulnerabilities (Nov 2012) - Linux
2012-11-09 00:00:00
nessus
nessus
Google Chrome < 23.0.1271.64 Multiple Vulnerabilities
2012-11-12 00:00:00
Google Chrome < 23.0.1271.64 Multiple Vulnerabilities
2012-11-08 00:00:00
Google Chrome < 23.0.1271.64 Multiple Vulnerabilities
2012-11-12 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2012-11-06 00:00:00
chrome
chrome
Stable Channel Release and Beta Channel Update
2012-11-06 00:00:00
threatpost
threatpost
Google Patches 14 Flaws in Chrome 23
2012-11-06 18:36:58
thn
thn
Chrome 23 Released, 14 vulnerabilities patched
2012-11-06 19:30:00
gentoo
gentoo
Chromium, V8: Multiple vulnerabilities
2013-09-24 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.2
Confidence
Low
EPSS
0.002
Percentile
61.2%
Related for NVD:CVE-2012-5117