CVE-2011-1459

CWE-400Uncontrolled Resource Consumption4 documents4 sources
Severity
6.5MEDIUM
EPSS
0.3%
top 47.81%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Google Blink
Timeline
PublishedNov 5
Latest updateApr 22

Description

The WebKit::WebPluginContainerImpl::handleEvent function in Google Chrome before Blink M11 allows an attacker to cause a denial of service (crash) via the htmlpluginelement.cpp plugin.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages1 packages

NVDgoogle/blink< m11

Patches

Patch: trac.webkit.orgPatch: trac.webkit.orgPatch: trac.webkit.org

🔴Vulnerability Details

2
GHSA
GHSA-f5v9-gx6m-f8qq: The WebKit::WebPluginContainerImpl::handleEvent function in Google Chrome before Blink M11 allows an attacker to cause a denial of service (crash) via2022-04-22
CVEList
CVE-2011-1459: The WebKit::WebPluginContainerImpl::handleEvent function in Google Chrome before Blink M11 allows an attacker to cause a denial of service (crash) via2019-11-05
CVE-2011-1459 (MEDIUM CVSS 6.5) | The WebKit::WebPluginContainerImpl: | cvebase.io