Lucene search
HistoryMar 05, 2013 - 9:55 p.m.
CVE-2013-0909
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
5.2
Confidence
High
EPSS
0.002
Percentile
55.3%
The XSS Auditor in Google Chrome before 25.0.1364.152 allows remote attackers to obtain sensitive HTTP Referer information via unspecified vectors.
Affected configurations
Node
googlechromeRange≤25.0.1364.126
ORgooglechromeMatch25.0.1364.0
ORgooglechromeMatch25.0.1364.1
ORgooglechromeMatch25.0.1364.2
ORgooglechromeMatch25.0.1364.3
ORgooglechromeMatch25.0.1364.5
ORgooglechromeMatch25.0.1364.7
ORgooglechromeMatch25.0.1364.8
ORgooglechromeMatch25.0.1364.9
ORgooglechromeMatch25.0.1364.10
ORgooglechromeMatch25.0.1364.11
ORgooglechromeMatch25.0.1364.12
ORgooglechromeMatch25.0.1364.13
ORgooglechromeMatch25.0.1364.14
ORgooglechromeMatch25.0.1364.15
ORgooglechromeMatch25.0.1364.16
ORgooglechromeMatch25.0.1364.17
ORgooglechromeMatch25.0.1364.18
ORgooglechromeMatch25.0.1364.19
ORgooglechromeMatch25.0.1364.20
ORgooglechromeMatch25.0.1364.21
ORgooglechromeMatch25.0.1364.22
ORgooglechromeMatch25.0.1364.23
ORgooglechromeMatch25.0.1364.24
ORgooglechromeMatch25.0.1364.25
ORgooglechromeMatch25.0.1364.26
ORgooglechromeMatch25.0.1364.27
ORgooglechromeMatch25.0.1364.28
ORgooglechromeMatch25.0.1364.29
ORgooglechromeMatch25.0.1364.30
ORgooglechromeMatch25.0.1364.31
ORgooglechromeMatch25.0.1364.32
ORgooglechromeMatch25.0.1364.33
ORgooglechromeMatch25.0.1364.34
ORgooglechromeMatch25.0.1364.35
ORgooglechromeMatch25.0.1364.36
ORgooglechromeMatch25.0.1364.37
ORgooglechromeMatch25.0.1364.38
ORgooglechromeMatch25.0.1364.39
ORgooglechromeMatch25.0.1364.40
ORgooglechromeMatch25.0.1364.41
ORgooglechromeMatch25.0.1364.42
ORgooglechromeMatch25.0.1364.43
ORgooglechromeMatch25.0.1364.44
ORgooglechromeMatch25.0.1364.45
ORgooglechromeMatch25.0.1364.46
ORgooglechromeMatch25.0.1364.47
ORgooglechromeMatch25.0.1364.48
ORgooglechromeMatch25.0.1364.49
ORgooglechromeMatch25.0.1364.50
ORgooglechromeMatch25.0.1364.51
ORgooglechromeMatch25.0.1364.52
ORgooglechromeMatch25.0.1364.53
ORgooglechromeMatch25.0.1364.54
ORgooglechromeMatch25.0.1364.55
ORgooglechromeMatch25.0.1364.56
ORgooglechromeMatch25.0.1364.57
ORgooglechromeMatch25.0.1364.58
ORgooglechromeMatch25.0.1364.61
ORgooglechromeMatch25.0.1364.62
ORgooglechromeMatch25.0.1364.63
ORgooglechromeMatch25.0.1364.65
ORgooglechromeMatch25.0.1364.66
ORgooglechromeMatch25.0.1364.67
ORgooglechromeMatch25.0.1364.68
ORgooglechromeMatch25.0.1364.70
ORgooglechromeMatch25.0.1364.72
ORgooglechromeMatch25.0.1364.73
ORgooglechromeMatch25.0.1364.74
ORgooglechromeMatch25.0.1364.75
ORgooglechromeMatch25.0.1364.76
ORgooglechromeMatch25.0.1364.77
ORgooglechromeMatch25.0.1364.78
ORgooglechromeMatch25.0.1364.79
ORgooglechromeMatch25.0.1364.80
ORgooglechromeMatch25.0.1364.81
ORgooglechromeMatch25.0.1364.82
ORgooglechromeMatch25.0.1364.84
ORgooglechromeMatch25.0.1364.85
ORgooglechromeMatch25.0.1364.86
ORgooglechromeMatch25.0.1364.87
ORgooglechromeMatch25.0.1364.88
ORgooglechromeMatch25.0.1364.89
ORgooglechromeMatch25.0.1364.90
ORgooglechromeMatch25.0.1364.91
ORgooglechromeMatch25.0.1364.92
ORgooglechromeMatch25.0.1364.93
ORgooglechromeMatch25.0.1364.95
ORgooglechromeMatch25.0.1364.98
ORgooglechromeMatch25.0.1364.99
ORgooglechromeMatch25.0.1364.108
ORgooglechromeMatch25.0.1364.110
ORgooglechromeMatch25.0.1364.112
ORgooglechromeMatch25.0.1364.113
ORgooglechromeMatch25.0.1364.114
ORgooglechromeMatch25.0.1364.115
ORgooglechromeMatch25.0.1364.116
ORgooglechromeMatch25.0.1364.117
ORgooglechromeMatch25.0.1364.118
ORgooglechromeMatch25.0.1364.119
ORgooglechromeMatch25.0.1364.120
ORgooglechromeMatch25.0.1364.121
ORgooglechromeMatch25.0.1364.122
ORgooglechromeMatch25.0.1364.123
ORgooglechromeMatch25.0.1364.124
ORgooglechromeMatch25.0.1364.125
| Vendor | Product | Version | CPE |
|---|---|---|---|
| chrome | * | cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* | |
| chrome | 25.0.1364.0 | cpe:2.3:a:google:chrome:25.0.1364.0:*:*:*:*:*:*:* | |
| chrome | 25.0.1364.1 | cpe:2.3:a:google:chrome:25.0.1364.1:*:*:*:*:*:*:* | |
| chrome | 25.0.1364.2 | cpe:2.3:a:google:chrome:25.0.1364.2:*:*:*:*:*:*:* | |
| chrome | 25.0.1364.3 | cpe:2.3:a:google:chrome:25.0.1364.3:*:*:*:*:*:*:* | |
| chrome | 25.0.1364.5 | cpe:2.3:a:google:chrome:25.0.1364.5:*:*:*:*:*:*:* | |
| chrome | 25.0.1364.7 | cpe:2.3:a:google:chrome:25.0.1364.7:*:*:*:*:*:*:* | |
| chrome | 25.0.1364.8 | cpe:2.3:a:google:chrome:25.0.1364.8:*:*:*:*:*:*:* | |
| chrome | 25.0.1364.9 | cpe:2.3:a:google:chrome:25.0.1364.9:*:*:*:*:*:*:* | |
| chrome | 25.0.1364.10 | cpe:2.3:a:google:chrome:25.0.1364.10:*:*:*:*:*:*:* |
Related
cve
cve
CVE-2013-0909
2013-03-05 21:55:11
cvelist
cvelist
CVE-2013-0909
2013-03-04 22:00:00
ubuntucve
ubuntucve
CVE-2013-0909
2013-03-05 00:00:00
prion
prion
Information disclosure
2013-03-05 21:55:00
debiancve
debiancve
CVE-2013-0909
2013-03-05 21:55:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2013-03-04 00:00:00
openvas
openvas
Google Chrome Multiple Vulnerabilities-02 March 2013 (Windows)
2013-03-11 00:00:00
Google Chrome Multiple Vulnerabilities-02 March 2013 (Linux)
2013-03-11 00:00:00
Google Chrome Multiple Vulnerabilities-02 (Mar 2013) - Windows
2013-03-11 00:00:00
nessus
nessus
FreeBSD : chromium -- multiple vulnerabilities (40d5ab37-85f2-11e2-b528-00262d5ed8ee)
2013-03-07 00:00:00
Google Chrome < 25.0.1364.152 Multiple Vulnerabilities
2013-03-06 00:00:00
Google Chrome < 25.0.1364.152 Multiple Vulnerabilities
2013-03-06 00:00:00
gentoo
gentoo
Chromium, V8: Multiple vulnerabilities
2013-09-24 00:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
5.2
Confidence
High
EPSS
0.002
Percentile
55.3%
Related for NVD:CVE-2013-0909