CVE-2011-3022Cleartext Transmission of Sensitive Info in Google Chrome

CWE-319Cleartext Transmission of Sensitive Info3 documents3 sources
Severity
5.0MEDIUMNVD
EPSS
0.5%
top 35.77%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Google Chrome
Timeline
PublishedFeb 16
Latest updateMay 13

Description

translate/translate_manager.cc in Google Chrome before 17.0.963.56 and 19.x before 19.0.1036.7 uses an HTTP session to exchange data for translation, which allows remote attackers to obtain sensitive information by sniffing the network.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDgoogle/chrome19.019.0.1036.7+14

Patches

Patch: src.chromium.orgPatch: src.chromium.org

🔴Vulnerability Details

2
GHSA
GHSA-69c8-vw69-gcq3: translate/translate_manager2022-05-13
OSV
CVE-2011-3022: translate/translate_manager2012-02-16
CVE-2011-3022 — Google Chrome vulnerability | cvebase