CVE-2013-0880

2013-02-2321:55:01

CWE-416

Chrome

web.nvd.nist.gov

cve-2013-0880

use-after-free vulnerability

google chrome

denial of service

remote attackers

nvd

databases

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.1

Confidence

High

EPSS

0.004

Percentile

74.7%

JSON

Use-after-free vulnerability in Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to databases.

Affected configurations

Nvd

Node

opensuseopensuseMatch12.1

opensuseopensuseMatch12.2

Node

googlechromeRange<25.0.1364.97

AND

linuxlinux_kernelMatch-

microsoftwindowsMatch-

Node

googlechromeRange<25.0.1364.99

AND

applemac_os_xMatch-

VendorProductVersionCPE
opensuseopensuse12.1cpe:2.3:o:opensuse:opensuse:12.1:*:*:*:*:*:*:*
opensuseopensuse12.2cpe:2.3:o:opensuse:opensuse:12.2:*:*:*:*:*:*:*
googlechrome*cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
linuxlinux_kernel-cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
microsoftwindows-cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
applemac_os_x-cpe:2.3:o:apple:mac_os_x:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
opensuse	opensuse	12.1	cpe:2.3:o:opensuse:opensuse:12.1:::::::*
opensuse	opensuse	12.2	cpe:2.3:o:opensuse:opensuse:12.2:::::::*
google	chrome	*	cpe:2.3:a:google:chrome::::::::
linux	linux_kernel	-	cpe:2.3:o:linux:linux_kernel:-:::::::*
microsoft	windows	-	cpe:2.3:o:microsoft:windows:-:::::::*
apple	mac_os_x	-	cpe:2.3:o:apple:mac_os_x:-:::::::*