CVE-2012-2883Improper Restriction of Operations within the Bounds of a Memory Buffer in Google Chrome

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer12 documents3 sources
Severity
7.5HIGHNVD
EPSS
0.9%
top 24.43%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Google ChromeOpensuse
Timeline
PublishedSep 26
Latest updateMay 14

Description

Skia, as used in Google Chrome before 22.0.1229.79, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger an out-of-bounds write operation, a different vulnerability than CVE-2012-2874.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages2 packages

NVDgoogle/chrome22.0.1229.78+52
NVDopensuse/opensuse12.1, 12.2+1

🔴Vulnerability Details

2
GHSA
GHSA-53pv-hrm8-w4g5: Skia, as used in Google Chrome before 222022-05-14
GHSA
GHSA-vrvr-rv69-wvh3: Skia, as used in Google Chrome before 222022-05-14

🕵️Threat Intelligence

7
Trendmicro
Backdoor-Variante infiziert Word-Dokumente und PDFs2019-08-26
Trendmicro
Asruex Backdoor Infects Files Via Old Vulnerabilities2019-08-22
Trendmicro
Asruex Backdoor Infects Files Via Old Vulnerabilities2019-08-22
Trendmicro
Asruex Backdoor Infects Files Via Old Vulnerabilities2019-08-22
Trendmicro
Asruex Backdoor Infects Files Via Old Vulnerabilities2019-08-22
CVE-2012-2883 — Google Chrome vulnerability | cvebase