CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
High
EPSS
Percentile
78.9%
Google Chrome before 22.0.1229.79 does not properly handle plug-ins, which allows remote attackers to cause a denial of service (DOM tree corruption) or possibly have unspecified other impact via unknown vectors.
Vendor | Product | Version | CPE |
---|---|---|---|
chrome | 22.0.1229.35 | cpe:/a:google:chrome:22.0.1229.35::: | |
chrome | 22.0.1229.33 | cpe:/a:google:chrome:22.0.1229.33::: | |
chrome | 22.0.1229.3 | cpe:/a:google:chrome:22.0.1229.3::: | |
chrome | 22.0.1229.51 | cpe:/a:google:chrome:22.0.1229.51::: | |
chrome | 22.0.1229.31 | cpe:/a:google:chrome:22.0.1229.31::: | |
chrome | 22.0.1229.50 | cpe:/a:google:chrome:22.0.1229.50::: | |
chrome | 22.0.1229.24 | cpe:/a:google:chrome:22.0.1229.24::: | |
chrome | 22.0.1229.28 | cpe:/a:google:chrome:22.0.1229.28::: | |
chrome | 22.0.1229.36 | cpe:/a:google:chrome:22.0.1229.36::: | |
chrome | 22.0.1229.21 | cpe:/a:google:chrome:22.0.1229.21::: |
googlechromereleases.blogspot.com/2012/09/stable-channel-update_25.html
lists.opensuse.org/opensuse-security-announce/2012-10/msg00012.html
code.google.com/p/chromium/issues/detail?id=139814
exchange.xforce.ibmcloud.com/vulnerabilities/78825
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14920