Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveChromeCVE-2011-3970
HistoryFeb 09, 2012 - 4:10 a.m.

CVE-2011-3970

2012-02-0904:10:29
CWE-125
Chrome
web.nvd.nist.gov
55
cve-2011-3970
libxslt
google chrome
denial of service
out-of-bounds read
nvd

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

6.8

Confidence

Low

EPSS

0.006

Percentile

78.0%

JSON

libxslt, as used in Google Chrome before 17.0.963.46, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

Affected configurations

Nvd
Node
googlechromeRange<17.0.963.46
Node
xmlsoftlibxsltRange1.1.26
Node
suselinux_enterprise_desktopMatch11sp2
OR
suselinux_enterprise_desktopMatch11sp3
OR
suselinux_enterprise_serverMatch10sp4ltss
OR
suselinux_enterprise_serverMatch11sp2
OR
suselinux_enterprise_serverMatch11sp2vmware
OR
suselinux_enterprise_serverMatch11sp3
OR
suselinux_enterprise_serverMatch11sp3vmware
OR
suselinux_enterprise_software_development_kitMatch11sp2
OR
suselinux_enterprise_software_development_kitMatch11sp3
VendorProductVersionCPE
googlechrome*cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
xmlsoftlibxslt*cpe:2.3:a:xmlsoft:libxslt:*:*:*:*:*:*:*:*
suselinux_enterprise_desktop11cpe:2.3:o:suse:linux_enterprise_desktop:11:sp2:*:*:*:*:*:*
suselinux_enterprise_desktop11cpe:2.3:o:suse:linux_enterprise_desktop:11:sp3:*:*:*:*:*:*
suselinux_enterprise_server10cpe:2.3:o:suse:linux_enterprise_server:10:sp4:*:*:ltss:*:*:*
suselinux_enterprise_server11cpe:2.3:o:suse:linux_enterprise_server:11:sp2:*:*:*:*:*:*
suselinux_enterprise_server11cpe:2.3:o:suse:linux_enterprise_server:11:sp2:*:*:*:vmware:*:*
suselinux_enterprise_server11cpe:2.3:o:suse:linux_enterprise_server:11:sp3:*:*:*:*:*:*
suselinux_enterprise_server11cpe:2.3:o:suse:linux_enterprise_server:11:sp3:*:*:*:vmware:*:*
suselinux_enterprise_software_development_kit11cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp2:*:*:*:*:*:*
Rows per page:
1-10 of 111

Related

securityvulns 5
debiancve 1
prion 1
gentoo 2
openvas 35
nessus 29
cvelist 1
ubuntucve 1
nvd 1
fedora 3
veracode 5
amazon 1
oraclelinux 1
redhat 2
ubuntu 1
centos 1
vmware 2
threatpost 1
freebsd 1
chrome 1
kitploit 1
tenable 1
osv 2
securityvulns
securityvulns
[ MDVSA-2012:028 ] libxslt
2012-03-09 00:00:00
iDefense Security Advisory 02.08.11: Microsoft Windows Picture and Fax Viewer Library
2011-02-11 00:00:00
libxslt out-of-bounds read
2012-03-09 00:00:00
debiancve
debiancve
CVE-2011-3970
2012-02-09 04:10:29
prion
prion
Out-of-bounds
2012-02-09 04:10:00
gentoo
gentoo
libxslt: Denial of service
2012-03-06 00:00:00
Chromium: Multiple vulnerabilities
2012-02-18 00:00:00
openvas
openvas
Mandriva Update for libxslt MDVSA-2012:028 (libxslt)
2012-03-07 00:00:00
Mandriva Update for libxslt MDVSA-2012:028 (libxslt)
2012-03-07 00:00:00
SUSE: Security Advisory (SUSE-SU-2012:0464-1)
2021-06-09 00:00:00
nessus
nessus
openSUSE Security Update : libxslt (openSUSE-SU-2012:0343-1)
2014-06-13 00:00:00
SuSE 11.1 Security Update : libxslt (SAT Patch Number 5810)
2012-04-04 00:00:00
SuSE 10 Security Update : libxslt (ZYPP Patch Number 8019)
2012-04-06 00:00:00
cvelist
cvelist
CVE-2011-3970
2012-02-09 02:00:00
ubuntucve
ubuntucve
CVE-2011-3970
2012-02-08 00:00:00
nvd
nvd
CVE-2011-3970
2012-02-09 04:10:29
fedora
fedora
[SECURITY] Fedora 18 Update: libxslt-1.1.27-2.fc18
2012-12-09 06:31:24
[SECURITY] Fedora 17 Update: libxslt-1.1.26-10.fc17
2012-09-26 09:11:57
[SECURITY] Fedora 16 Update: libxslt-1.1.26-9.fc16
2012-09-27 04:27:12
veracode
veracode
Denial Of Service (DoS)
2019-05-02 04:43:13
Denial Of Service (DoS)
2019-05-02 04:43:13
Denial Of Service (DoS)
2019-05-02 04:43:13
amazon
amazon
Important: libxslt
2012-09-22 21:33:00
oraclelinux
oraclelinux
libxslt security update
2012-09-13 00:00:00
redhat
redhat
(RHSA-2012:1265) Important: libxslt security update
2012-09-13 00:00:00
(RHSA-2012:1325) Important: rhev-hypervisor6 security and bug fix update
2012-10-02 00:00:00
ubuntu
ubuntu
libxslt vulnerabilities
2012-10-04 00:00:00
centos
centos
libxslt security update
2012-09-13 18:02:29
vmware
vmware
VMware vSphere security updates for the authentication service and third party libraries
2013-01-31 00:00:00
VMware vSphere security updates for the authentication service and third party libraries
2013-01-31 00:00:00
threatpost
threatpost
Google Fixes 20 Flaws in Chrome, Adds Scanning of Downloaded Files
2012-02-08 20:18:23
freebsd
freebsd
chromium -- multiple vulnerabilities
2012-02-08 00:00:00
chrome
chrome
Stable Channel Update
2012-02-08 00:00:00
kitploit
kitploit
Radamsa - A General-Purpose Fuzzer
2024-03-25 11:30:00
tenable
tenable
[R1] Nessus Network Monitor 6.2.2 Fixes Multiple Vulnerabilities
2023-06-29 10:45:47
osv
osv
chromedriver-55.0.2883.75-3.1 on GA media
2024-06-15 00:00:00
ungoogled-chromium-113.0.5672.92-1.1 on GA media
2024-06-15 00:00:00

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

6.8

Confidence

Low

EPSS

0.006

Percentile

78.0%

JSON
Related for CVE-2011-3970
securityvulns5debiancve1prion1gentoo2openvas35nessus29cvelist1ubuntucve1nvd1fedora3veracode5amazon1oraclelinux1redhat2ubuntu1centos1vmware2threatpost1freebsd1chrome1kitploit1tenable1osv2