Lucene search

ChromeCVE-2011-1803

HistoryNov 12, 2019 - 10:15 p.m.

CVE-2011-1803

2019-11-1222:15:10

CWE-415

Chrome

web.nvd.nist.gov

cve-2011-1803

webkit

svg

animation

smil

google chrome

blink m11

blink m12

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

AI Score

6.2

Confidence

High

EPSS

0.001

Percentile

41.2%

JSON

An issue exists in third_party/WebKit/Source/WebCore/svg/animation/SVGSMILElement.h in WebKit in Google Chrome before Blink M11 and M12 when trying to access a removed smil element.

Affected configurations

Nvd

Node

googleblinkRange<m11chromium

VendorProductVersionCPE
googleblink*cpe:2.3:a:google:blink:*:*:*:*:*:chromium:*:*

Vendor	Product	Version	CPE
google	blink	*	cpe:2.3:a:google:blink::::::chromium::*

CNA Affected

[
  {
    "product": "Chrome",
    "vendor": "Google",
    "versions": [
      {
        "status": "affected",
        "version": "before Blink M11 and M12"
      }
    ]
  }
]

References

trac.webkit.org/changeset/86748

bugs.chromium.org/p/chromium/issues/detail?id=82516

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

AI Score

6.2

Confidence

High

EPSS

0.001

Percentile

41.2%

JSON

Related for CVE-2011-1803