CVE-2011-3072 β€” Origin Validation Error in Google Chrome

CWE-346 β€” Origin Validation Error3 documents3 sources
Severity
6.8MEDIUMNVD
EPSS
0.4%
top 42.19%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Google Chrome
Timeline
PublishedApr 5
Latest updateMay 13

Description

Google Chrome before 18.0.1025.151 allows remote attackers to bypass the Same Origin Policy via vectors related to pop-up windows.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages1 packages

β–ΆNVDgoogle/chrome< 18.0.1025.151

πŸ”΄Vulnerability Details

1
GHSA
GHSA-vcv7-w6fc-r5xc: Google Chrome before 18β†—2022-05-13
β–Ά

πŸ“‹Vendor Advisories

1
Red Hat
Squid: Denial of service due internal error in string handling (SQUID-2010:3)β†—2010-09-03
β–Ά
CVE-2011-3072 β€” Origin Validation Error in Google | cvebase