Lucene search

[email protected]NVD:CVE-2013-2840

HistoryMay 22, 2013 - 1:29 p.m.

CVE-2013-2840

2013-05-2213:29:56

CWE-399

[email protected]

web.nvd.nist.gov

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

Confidence

High

EPSS

0.004

Percentile

74.7%

JSON

Use-after-free vulnerability in the media loader in Google Chrome before 27.0.1453.93 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors, a different vulnerability than CVE-2013-2846.

Affected configurations

NVD

Node

googlechromeRange≤27.0.1453.91

googlechromeMatch27.0.1453.0

googlechromeMatch27.0.1453.1

googlechromeMatch27.0.1453.2

googlechromeMatch27.0.1453.3

googlechromeMatch27.0.1453.4

googlechromeMatch27.0.1453.5

googlechromeMatch27.0.1453.6

googlechromeMatch27.0.1453.7

googlechromeMatch27.0.1453.8

googlechromeMatch27.0.1453.9

googlechromeMatch27.0.1453.10

googlechromeMatch27.0.1453.11

googlechromeMatch27.0.1453.12

googlechromeMatch27.0.1453.13

googlechromeMatch27.0.1453.15

googlechromeMatch27.0.1453.34

googlechromeMatch27.0.1453.35

googlechromeMatch27.0.1453.36

googlechromeMatch27.0.1453.37

googlechromeMatch27.0.1453.38

googlechromeMatch27.0.1453.39

googlechromeMatch27.0.1453.40

googlechromeMatch27.0.1453.41

googlechromeMatch27.0.1453.42

googlechromeMatch27.0.1453.43

googlechromeMatch27.0.1453.44

googlechromeMatch27.0.1453.45

googlechromeMatch27.0.1453.46

googlechromeMatch27.0.1453.47

googlechromeMatch27.0.1453.49

googlechromeMatch27.0.1453.50

googlechromeMatch27.0.1453.51

googlechromeMatch27.0.1453.52

googlechromeMatch27.0.1453.54

googlechromeMatch27.0.1453.55

googlechromeMatch27.0.1453.56

googlechromeMatch27.0.1453.57

googlechromeMatch27.0.1453.58

googlechromeMatch27.0.1453.59

googlechromeMatch27.0.1453.60

googlechromeMatch27.0.1453.61

googlechromeMatch27.0.1453.62

googlechromeMatch27.0.1453.63

googlechromeMatch27.0.1453.64

googlechromeMatch27.0.1453.65

googlechromeMatch27.0.1453.66

googlechromeMatch27.0.1453.67

googlechromeMatch27.0.1453.68

googlechromeMatch27.0.1453.69

googlechromeMatch27.0.1453.70

googlechromeMatch27.0.1453.71

googlechromeMatch27.0.1453.72

googlechromeMatch27.0.1453.73

googlechromeMatch27.0.1453.74

googlechromeMatch27.0.1453.75

googlechromeMatch27.0.1453.76

googlechromeMatch27.0.1453.77

googlechromeMatch27.0.1453.78

googlechromeMatch27.0.1453.79

googlechromeMatch27.0.1453.80

googlechromeMatch27.0.1453.81

googlechromeMatch27.0.1453.82

googlechromeMatch27.0.1453.83

googlechromeMatch27.0.1453.84

googlechromeMatch27.0.1453.85

googlechromeMatch27.0.1453.86

googlechromeMatch27.0.1453.87

googlechromeMatch27.0.1453.88

googlechromeMatch27.0.1453.89

googlechromeMatch27.0.1453.90

References

googlechromereleases.blogspot.com/2013/05/stable-channel-release.html

www.debian.org/security/2013/dsa-2695

code.google.com/p/chromium/issues/detail?id=230117

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16706

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

Confidence

High

EPSS

0.004

Percentile

74.7%

JSON

Related for NVD:CVE-2013-2840

prion2 cve2 ubuntucve2 cvelist2 debiancve2 nvd1 threatpost1 openvas10 freebsd1 debian2 nessus7 securityvulns2 osv1 chrome1 mageia1 gentoo1