CVE-2011-2361Improper Authentication in Google Chrome

CWE-287Improper Authentication2 documents2 sources
Severity
4.3MEDIUMNVD
EPSS
0.3%
top 46.87%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Google Chrome
Timeline
PublishedAug 3
Latest updateMay 13

Description

The Basic Authentication dialog implementation in Google Chrome before 13.0.782.107 does not properly handle strings, which might make it easier for remote attackers to capture credentials via a crafted web site.

CVSS vector

AV:N/AC:M/C:P/I:N/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

NVDgoogle/chrome< 13.0.782.107

🔴Vulnerability Details

1
GHSA
GHSA-rp99-5ffv-fhjj: The Basic Authentication dialog implementation in Google Chrome before 132022-05-13
CVE-2011-2361 — Improper Authentication in Google | cvebase