CVE-2011-3092Improper Input Validation in Google Chrome

CWE-20Improper Input Validation5 documents4 sources
Severity
10.0CRITICALNVD
EPSS
2.9%
top 13.51%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Google Chrome
Timeline
PublishedMay 16
Latest updateMay 14

Description

The regex implementation in Google V8, as used in Google Chrome before 19.0.1084.46, allows remote attackers to cause a denial of service (invalid write operation) or possibly have unspecified other impact via unknown vectors.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

NVDgoogle/chrome19.0.1084.45

🔴Vulnerability Details

2
GHSA
GHSA-7xm3-983m-rxjr: The regex implementation in Google V8, as used in Google Chrome before 192022-05-14
OSV
CVE-2011-3092: The regex implementation in Google V8, as used in Google Chrome before 192012-05-16

💬Community

2
Bugzilla
CVE-2011-3092 v8: DoS in the regex implementation2012-05-16
Bugzilla
CVE-2011-3092 CVE-2011-3103 CVE-2011-3111 CVE-2011-3115 v8 various flaws [fedora-all]2012-05-16
CVE-2011-3092 — Improper Input Validation in Google | cvebase