CVE-2011-0479Access of Uninitialized Pointer in Google Chrome

CWE-824Access of Uninitialized Pointer3 documents3 sources
Severity
7.5HIGHNVD
EPSS
1.6%
top 18.50%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Google ChromeGoogle Chrome OS
Timeline
PublishedJan 14
Latest updateMay 13

Description

Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly interact with extensions, which allows remote attackers to cause a denial of service via a crafted extension that triggers an uninitialized pointer.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages2 packages

NVDgoogle/chrome< 8.0.552.237
NVDgoogle/chrome_os< 8.0.552.344

🔴Vulnerability Details

2
GHSA
GHSA-w466-hvww-7wfm: Google Chrome before 82022-05-13
CVEList
CVE-2011-0479: Google Chrome before 82011-01-14
CVE-2011-0479 — Access of Uninitialized Pointer | cvebase