5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.001 Low
EPSS
Percentile
44.2%
Google Chrome before 18.0.1025308 on Android does not properly restrict
access to file: URLs, which allows remote attackers to obtain sensitive
information via unspecified vectors, as demonstrated by obtaining
credential data, a different vulnerability than CVE-2012-4906.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 10.04 | noarch | chromium-browser | < 23.0.1271.97-0ubuntu0.10.04.1 | UNKNOWN |
ubuntu | 11.10 | noarch | chromium-browser | < 23.0.1271.97-0ubuntu0.11.10.1 | UNKNOWN |
ubuntu | 12.04 | noarch | chromium-browser | < 20.0.1132.47~r144678-0ubuntu0.12.04.1 | UNKNOWN |