CVE-2011-3023Use After Free in Google Chrome

CWE-416Use After Free3 documents3 sources
Severity
6.8MEDIUMNVD
EPSS
0.6%
top 29.88%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Google Chrome
Timeline
PublishedFeb 16
Latest updateMay 13

Description

Use-after-free vulnerability in Google Chrome before 17.0.963.56 allows user-assisted remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to drag-and-drop operations.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages1 packages

NVDgoogle/chrome< 17.0.963.56

Patches

Patch: code.google.comPatch: code.google.com

🔴Vulnerability Details

2
GHSA
GHSA-35hh-4hmp-9jm3: Use-after-free vulnerability in Google Chrome before 172022-05-13
OSV
CVE-2011-3023: Use-after-free vulnerability in Google Chrome before 172012-02-16
CVE-2011-3023 — Use After Free in Google Chrome | cvebase