CVE-2011-3052Improper Restriction of Operations within the Bounds of a Memory Buffer in Google Chrome

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer3 documents3 sources
Severity
6.8MEDIUMNVD
EPSS
1.4%
top 19.18%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Google ChromeOpensuse
Timeline
PublishedMar 22
Latest updateMay 13

Description

The WebGL implementation in Google Chrome before 17.0.963.83 does not properly handle CANVAS elements, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages2 packages

NVDgoogle/chrome< 18.0.1025.142

🔴Vulnerability Details

1
GHSA
GHSA-q888-r7rg-fx7p: The WebGL implementation in Google Chrome before 172022-05-13
CVE-2011-3052 — Google Chrome vulnerability | cvebase