CVE-2010-5069Sensitive Information Exposure in Google Chrome

CWE-200Sensitive Information Exposure2 documents2 sources
Severity
4.3MEDIUMNVD
EPSS
0.1%
top 67.53%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Google Chrome
Timeline
PublishedDec 7
Latest updateMay 17

Description

The Cascading Style Sheets (CSS) implementation in Google Chrome 4 does not properly handle the :visited pseudo-class, which allows remote attackers to obtain sensitive information about visited web pages via a crafted HTML document. NOTE: this may overlap CVE-2010-2264.

CVSS vector

AV:N/AC:M/C:P/I:N/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

NVDgoogle/chrome224 versions+223

🔴Vulnerability Details

1
GHSA
GHSA-ccqg-4ff6-jg4g: The Cascading Style Sheets (CSS) implementation in Google Chrome 4 does not properly handle the :visited pseudo-class, which allows remote attackers t2022-05-17
CVE-2010-5069 — Sensitive Information Exposure | cvebase