CVE-2013-0924

Опубликовано: 28 мар. 2013

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

The extension functionality in Google Chrome before 26.0.1410.43 does not verify that use of the permissions API is consistent with file permissions, which has unspecified impact and attack vectors.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

Версия до 26.0.1410.42 (включая)

cpe:2.3:a:google:chrome:26.0.1410.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.2:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.3:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.4:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.5:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.6:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.7:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.8:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.9:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.10:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.11:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.12:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.14:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.15:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.16:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.17:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.18:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.19:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.20:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.21:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.22:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.23:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.24:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.25:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.26:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.27:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.28:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.29:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.30:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.31:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.32:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.33:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.34:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.35:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.36:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.37:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.38:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.39:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.40:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:26.0.1410.41:*:*:*:*:*:*:*

EPSS

Процентиль: 35%

0.00147

Низкий

7.5 High

CVSS2

Дефекты

CWE-264

Связанные уязвимости

CVE-2013-0924

ubuntu

почти 13 лет назад

The extension functionality in Google Chrome before 26.0.1410.43 does not verify that use of the permissions API is consistent with file permissions, which has unspecified impact and attack vectors.

CVE-2013-0924

debian

почти 13 лет назад

The extension functionality in Google Chrome before 26.0.1410.43 does ...

GHSA-w8gq-53mf-w5v3

github

больше 3 лет назад

The extension functionality in Google Chrome before 26.0.1410.43 does not verify that use of the permissions API is consistent with file permissions, which has unspecified impact and attack vectors.

EPSS

Процентиль: 35%

0.00147

Низкий

7.5 High

CVSS2

Дефекты

CWE-264