Lucene search
HistoryApr 16, 2013 - 8:55 p.m.
CVE-2013-2834
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
6.4 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
51.8%
Google Chrome OS before 26.0.1410.57 does not properly enforce origin restrictions for the O3D and Google Talk plug-ins, which allows remote attackers to bypass the domain-whitelist protection mechanism via a crafted web site, a different vulnerability than CVE-2013-2835.
Affected configurations
Node
googlechrome_osRange≤26.0.1410.56
ORgooglechrome_osMatch26.0.1410.0
ORgooglechrome_osMatch26.0.1410.1
ORgooglechrome_osMatch26.0.1410.3
ORgooglechrome_osMatch26.0.1410.4
ORgooglechrome_osMatch26.0.1410.5
ORgooglechrome_osMatch26.0.1410.6
ORgooglechrome_osMatch26.0.1410.7
ORgooglechrome_osMatch26.0.1410.8
ORgooglechrome_osMatch26.0.1410.9
ORgooglechrome_osMatch26.0.1410.10
ORgooglechrome_osMatch26.0.1410.11
ORgooglechrome_osMatch26.0.1410.12
ORgooglechrome_osMatch26.0.1410.14
ORgooglechrome_osMatch26.0.1410.15
ORgooglechrome_osMatch26.0.1410.16
ORgooglechrome_osMatch26.0.1410.17
ORgooglechrome_osMatch26.0.1410.18
ORgooglechrome_osMatch26.0.1410.19
ORgooglechrome_osMatch26.0.1410.20
ORgooglechrome_osMatch26.0.1410.21
ORgooglechrome_osMatch26.0.1410.22
ORgooglechrome_osMatch26.0.1410.23
ORgooglechrome_osMatch26.0.1410.24
ORgooglechrome_osMatch26.0.1410.25
ORgooglechrome_osMatch26.0.1410.26
ORgooglechrome_osMatch26.0.1410.27
ORgooglechrome_osMatch26.0.1410.28
ORgooglechrome_osMatch26.0.1410.29
ORgooglechrome_osMatch26.0.1410.30
ORgooglechrome_osMatch26.0.1410.31
ORgooglechrome_osMatch26.0.1410.32
ORgooglechrome_osMatch26.0.1410.33
ORgooglechrome_osMatch26.0.1410.34
ORgooglechrome_osMatch26.0.1410.35
ORgooglechrome_osMatch26.0.1410.36
ORgooglechrome_osMatch26.0.1410.37
ORgooglechrome_osMatch26.0.1410.38
ORgooglechrome_osMatch26.0.1410.39
ORgooglechrome_osMatch26.0.1410.40
ORgooglechrome_osMatch26.0.1410.41
ORgooglechrome_osMatch26.0.1410.42
ORgooglechrome_osMatch26.0.1410.43
ORgooglechrome_osMatch26.0.1410.44
ORgooglechrome_osMatch26.0.1410.45
ORgooglechrome_osMatch26.0.1410.46
ORgooglechrome_osMatch26.0.1410.47
ORgooglechrome_osMatch26.0.1410.48
ORgooglechrome_osMatch26.0.1410.49
ORgooglechrome_osMatch26.0.1410.50
ORgooglechrome_osMatch26.0.1410.51
ORgooglechrome_osMatch26.0.1410.52
ORgooglechrome_osMatch26.0.1410.54
ORgooglechrome_osMatch26.0.1410.55
Related
cve
cve
CVE-2013-2834
2022-10-03 16:15:01
CVE-2013-2835
2022-10-03 16:14:59
prion
prion
Security feature bypass
2013-04-16 20:55:00
Security feature bypass
2013-04-16 20:55:00
nvd
nvd
CVE-2013-2835
2013-04-16 20:55:01
cvelist
cvelist
CVE-2013-2835
2022-10-03 16:14:59
CVE-2013-2834
2022-10-03 16:15:01
thn
thn
nessus
nessus
Google Chrome OS < 26.0.1410.57 Multiple Security Vulnerabilities
2013-03-27 00:00:00
Google Chrome OS < 26.0.1410.57 Multiple Security Vulnerabilities
2013-03-27 00:00:00
chrome
chrome
Stable Channel Update for Chrome OS
2013-04-15 00:00:00
seebug
seebug
Google Chrome OS 26.0.1410.57之前版本多个安全漏洞
2013-04-17 00:00:00
threatpost
threatpost
Google Fixes Three High-Risk Flaws in Chrome OS
2013-04-15 18:46:56
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
6.4 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
51.8%
Related for NVD:CVE-2013-2834