Lucene search

ChromeCVE-2011-3886

HistoryOct 25, 2011 - 7:55 p.m.

CVE-2011-3886

2011-10-2519:55:01

CWE-20

Chrome

web.nvd.nist.gov

cve-2011-3886

google v8

google chrome

remote attackers

denial of service

out-of-bounds write operations

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.2

Confidence

High

EPSS

0.01

Percentile

83.6%

JSON

Google V8, as used in Google Chrome before 15.0.874.102, allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted JavaScript code that triggers out-of-bounds write operations.

Affected configurations

Nvd

Node

googlev8

AND

googlechromeRange≤15.0.874.101

VendorProductVersionCPE
googlev8*cpe:2.3:a:google:v8:*:*:*:*:*:*:*:*
googlechrome*cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
google	v8	*	cpe:2.3:a:google:v8::::::::
google	chrome	*	cpe:2.3:a:google:chrome::::::::

References

code.google.com/p/chromium/issues/detail?id=98773

code.google.com/p/chromium/issues/detail?id=99167

googlechromereleases.blogspot.com/2011/10/chrome-stable-release.html

exchange.xforce.ibmcloud.com/vulnerabilities/70964

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13201

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.2

Confidence

High

EPSS

0.01

Percentile

83.6%

JSON

Related for CVE-2011-3886