CVE-2011-3098 — Google Chrome vulnerability

CWE-2642 documents2 sources

Severity

7.2HIGHNVD

EPSS

0.0%

top 91.74%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Google Chrome Opensuse

Timeline

PublishedMay 16

Latest updateMay 14

Description

Google Chrome before 19.0.1084.46 on Windows uses an incorrect search path for the Windows Media Player plug-in, which might allow local users to gain privileges via a Trojan horse plug-in in an unspecified directory.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages2 packages

▶NVDgoogle/chrome19.0.1084.45

▶NVDopensuse/opensuse12.1

Patches

Patch: code.google.com ↗Patch: code.google.com ↗

🔴Vulnerability Details

GHSA

GHSA-9wp3-7fwj-q9m5: Google Chrome before 19↗2022-05-14

▶