Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2013-2908
HistoryOct 02, 2013 - 10:35 a.m.

CVE-2013-2908

2013-10-0210:35:35
[email protected]
web.nvd.nist.gov
6

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

6

Confidence

Low

EPSS

0.006

Percentile

79.0%

JSON

Google Chrome before 30.0.1599.66 uses incorrect function calls to determine the values of NavigationEntry objects, which allows remote attackers to spoof the address bar via vectors involving a response with a 204 (aka No Content) status code.

Affected configurations

Nvd
Node
googlechromeRange30.0.1599.65
OR
googlechromeMatch30.0.1599.0
OR
googlechromeMatch30.0.1599.1
OR
googlechromeMatch30.0.1599.2
OR
googlechromeMatch30.0.1599.4
OR
googlechromeMatch30.0.1599.5
OR
googlechromeMatch30.0.1599.6
OR
googlechromeMatch30.0.1599.7
OR
googlechromeMatch30.0.1599.8
OR
googlechromeMatch30.0.1599.9
OR
googlechromeMatch30.0.1599.10
OR
googlechromeMatch30.0.1599.11
OR
googlechromeMatch30.0.1599.12
OR
googlechromeMatch30.0.1599.13
OR
googlechromeMatch30.0.1599.14
OR
googlechromeMatch30.0.1599.15
OR
googlechromeMatch30.0.1599.16
OR
googlechromeMatch30.0.1599.17
OR
googlechromeMatch30.0.1599.18
OR
googlechromeMatch30.0.1599.19
OR
googlechromeMatch30.0.1599.20
OR
googlechromeMatch30.0.1599.21
OR
googlechromeMatch30.0.1599.22
OR
googlechromeMatch30.0.1599.23
OR
googlechromeMatch30.0.1599.24
OR
googlechromeMatch30.0.1599.25
OR
googlechromeMatch30.0.1599.26
OR
googlechromeMatch30.0.1599.27
OR
googlechromeMatch30.0.1599.28
OR
googlechromeMatch30.0.1599.29
OR
googlechromeMatch30.0.1599.30
OR
googlechromeMatch30.0.1599.31
OR
googlechromeMatch30.0.1599.32
OR
googlechromeMatch30.0.1599.33
OR
googlechromeMatch30.0.1599.34
OR
googlechromeMatch30.0.1599.35
OR
googlechromeMatch30.0.1599.36
OR
googlechromeMatch30.0.1599.37
OR
googlechromeMatch30.0.1599.38
OR
googlechromeMatch30.0.1599.39
OR
googlechromeMatch30.0.1599.40
OR
googlechromeMatch30.0.1599.41
OR
googlechromeMatch30.0.1599.42
OR
googlechromeMatch30.0.1599.43
OR
googlechromeMatch30.0.1599.44
OR
googlechromeMatch30.0.1599.47
OR
googlechromeMatch30.0.1599.48
OR
googlechromeMatch30.0.1599.49
OR
googlechromeMatch30.0.1599.50
OR
googlechromeMatch30.0.1599.51
OR
googlechromeMatch30.0.1599.52
OR
googlechromeMatch30.0.1599.53
OR
googlechromeMatch30.0.1599.56
OR
googlechromeMatch30.0.1599.57
OR
googlechromeMatch30.0.1599.58
OR
googlechromeMatch30.0.1599.59
OR
googlechromeMatch30.0.1599.60
OR
googlechromeMatch30.0.1599.61
OR
googlechromeMatch30.0.1599.64
VendorProductVersionCPE
googlechrome*cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
googlechrome30.0.1599.0cpe:2.3:a:google:chrome:30.0.1599.0:*:*:*:*:*:*:*
googlechrome30.0.1599.1cpe:2.3:a:google:chrome:30.0.1599.1:*:*:*:*:*:*:*
googlechrome30.0.1599.2cpe:2.3:a:google:chrome:30.0.1599.2:*:*:*:*:*:*:*
googlechrome30.0.1599.4cpe:2.3:a:google:chrome:30.0.1599.4:*:*:*:*:*:*:*
googlechrome30.0.1599.5cpe:2.3:a:google:chrome:30.0.1599.5:*:*:*:*:*:*:*
googlechrome30.0.1599.6cpe:2.3:a:google:chrome:30.0.1599.6:*:*:*:*:*:*:*
googlechrome30.0.1599.7cpe:2.3:a:google:chrome:30.0.1599.7:*:*:*:*:*:*:*
googlechrome30.0.1599.8cpe:2.3:a:google:chrome:30.0.1599.8:*:*:*:*:*:*:*
googlechrome30.0.1599.9cpe:2.3:a:google:chrome:30.0.1599.9:*:*:*:*:*:*:*
Rows per page:
1-10 of 591

Related

cvelist 1
debiancve 1
cve 1
prion 1
ubuntucve 1
nessus 10
openvas 11
mageia 1
freebsd 1
suse 2
chrome 1
debian 2
osv 1
gentoo 1
cvelist
cvelist
CVE-2013-2908
2013-10-02 10:00:00
debiancve
debiancve
CVE-2013-2908
2013-10-02 10:35:00
cve
cve
CVE-2013-2908
2013-10-02 10:35:35
prion
prion
Code injection
2013-10-02 10:35:00
ubuntucve
ubuntucve
CVE-2013-2908
2013-10-02 00:00:00
nessus
nessus
Google Chrome < 30.0.1599.66 Multiple Vulnerabilities
2013-09-02 00:00:00
openSUSE Security Update : chromium (openSUSE-SU-2013:1556-1)
2014-06-13 00:00:00
FreeBSD : chromium -- multiple vulnerabilities (e5414d0c-2ade-11e3-821d-00262d5ed8ee)
2013-10-02 00:00:00
openvas
openvas
Google Chrome Multiple Vulnerabilities-01 (Oct 2013) - Windows
2013-10-07 00:00:00
SuSE Update for chromium openSUSE-SU-2013:1556-1 (chromium)
2013-11-19 00:00:00
Google Chrome Multiple Vulnerabilities-01 (Oct 2013) - Linux
2013-10-08 00:00:00
mageia
mageia
Updated chromium-browser-stable packages fix security vulnerabilities
2013-10-17 22:53:27
freebsd
freebsd
chromium -- multiple vulnerabilities
2013-10-01 00:00:00
suse
suse
chromium: 30.0.1599.66 security and bugfix update (important)
2013-10-16 18:04:12
chromium: update to 31.0.1650.57 (important)
2013-12-12 18:05:02
chrome
chrome
Stable Channel Update
2013-10-01 00:00:00
debian
debian
[SECURITY] [DSA 2785-1] chromium-browser security update
2013-10-26 19:03:01
[SECURITY] [DSA 2785-1] chromium-browser security update
2013-10-26 19:03:01
osv
osv
chromium-browser - several
2013-10-26 00:00:00
gentoo
gentoo
Chromium, V8: Multiple vulnerabilities
2014-03-05 00:00:00

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

6

Confidence

Low

EPSS

0.006

Percentile

79.0%

JSON
Related for NVD:CVE-2013-2908
cvelist1debiancve1cve1prion1ubuntucve1nessus10openvas11mageia1freebsd1suse2chrome1debian2osv1gentoo1