Lucene search
HistoryMar 28, 2013 - 12:18 p.m.
CVE-2013-0922
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.2
Confidence
Low
EPSS
0.001
Percentile
50.8%
Google Chrome before 26.0.1410.43 does not properly restrict brute-force access attempts against web sites that require HTTP Basic Authentication, which has unspecified impact and attack vectors.
Affected configurations
Node
googlechromeRange≤26.0.1410.42
ORgooglechromeMatch26.0.1410.0
ORgooglechromeMatch26.0.1410.1
ORgooglechromeMatch26.0.1410.2
ORgooglechromeMatch26.0.1410.3
ORgooglechromeMatch26.0.1410.4
ORgooglechromeMatch26.0.1410.5
ORgooglechromeMatch26.0.1410.6
ORgooglechromeMatch26.0.1410.7
ORgooglechromeMatch26.0.1410.8
ORgooglechromeMatch26.0.1410.9
ORgooglechromeMatch26.0.1410.10
ORgooglechromeMatch26.0.1410.11
ORgooglechromeMatch26.0.1410.12
ORgooglechromeMatch26.0.1410.14
ORgooglechromeMatch26.0.1410.15
ORgooglechromeMatch26.0.1410.16
ORgooglechromeMatch26.0.1410.17
ORgooglechromeMatch26.0.1410.18
ORgooglechromeMatch26.0.1410.19
ORgooglechromeMatch26.0.1410.20
ORgooglechromeMatch26.0.1410.21
ORgooglechromeMatch26.0.1410.22
ORgooglechromeMatch26.0.1410.23
ORgooglechromeMatch26.0.1410.24
ORgooglechromeMatch26.0.1410.25
ORgooglechromeMatch26.0.1410.26
ORgooglechromeMatch26.0.1410.27
ORgooglechromeMatch26.0.1410.28
ORgooglechromeMatch26.0.1410.29
ORgooglechromeMatch26.0.1410.30
ORgooglechromeMatch26.0.1410.31
ORgooglechromeMatch26.0.1410.32
ORgooglechromeMatch26.0.1410.33
ORgooglechromeMatch26.0.1410.34
ORgooglechromeMatch26.0.1410.35
ORgooglechromeMatch26.0.1410.36
ORgooglechromeMatch26.0.1410.37
ORgooglechromeMatch26.0.1410.38
ORgooglechromeMatch26.0.1410.39
ORgooglechromeMatch26.0.1410.40
ORgooglechromeMatch26.0.1410.41
| Vendor | Product | Version | CPE |
|---|---|---|---|
| chrome | * | cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* | |
| chrome | 26.0.1410.0 | cpe:2.3:a:google:chrome:26.0.1410.0:*:*:*:*:*:*:* | |
| chrome | 26.0.1410.1 | cpe:2.3:a:google:chrome:26.0.1410.1:*:*:*:*:*:*:* | |
| chrome | 26.0.1410.2 | cpe:2.3:a:google:chrome:26.0.1410.2:*:*:*:*:*:*:* | |
| chrome | 26.0.1410.3 | cpe:2.3:a:google:chrome:26.0.1410.3:*:*:*:*:*:*:* | |
| chrome | 26.0.1410.4 | cpe:2.3:a:google:chrome:26.0.1410.4:*:*:*:*:*:*:* | |
| chrome | 26.0.1410.5 | cpe:2.3:a:google:chrome:26.0.1410.5:*:*:*:*:*:*:* | |
| chrome | 26.0.1410.6 | cpe:2.3:a:google:chrome:26.0.1410.6:*:*:*:*:*:*:* | |
| chrome | 26.0.1410.7 | cpe:2.3:a:google:chrome:26.0.1410.7:*:*:*:*:*:*:* | |
| chrome | 26.0.1410.8 | cpe:2.3:a:google:chrome:26.0.1410.8:*:*:*:*:*:*:* |
Related
cve
cve
CVE-2013-0922
2013-03-28 12:18:52
cvelist
cvelist
CVE-2013-0922
2013-03-28 10:00:00
debiancve
debiancve
CVE-2013-0922
2013-03-28 12:18:00
ubuntucve
ubuntucve
CVE-2013-0922
2013-03-28 00:00:00
prion
prion
Design/Logic Flaw
2013-03-28 12:18:00
openvas
openvas
Google Chrome Multiple Vulnerabilities-01 April 2013 (MAC OS X)
2013-04-02 00:00:00
Google Chrome Multiple Vulnerabilities-01 April 2013 (Windows)
2013-04-02 00:00:00
Google Chrome Multiple Vulnerabilities-01 (Apr 2013) - Mac OS X
2013-04-02 00:00:00
nessus
nessus
Google Chrome < 26.0.1410.43 Multiple Vulnerabilities
2013-03-26 00:00:00
Google Chrome < 26.0.1410.43 Multiple Vulnerabilities
2013-03-27 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2013-03-26 00:00:00
threatpost
threatpost
Google Fixes 11 Flaws in Chrome
2013-03-26 18:31:24
chrome
chrome
Stable Channel Update
2013-03-26 00:00:00
gentoo
gentoo
Chromium, V8: Multiple vulnerabilities
2013-09-24 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.2
Confidence
Low
EPSS
0.001
Percentile
50.8%
Related for NVD:CVE-2013-0922