CVE-2012-5157Improper Restriction of Operations within the Bounds of a Memory Buffer in Google Chrome

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer2 documents2 sources
Severity
4.3MEDIUMNVD
EPSS
0.8%
top 25.80%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Google Chrome
Timeline
PublishedJan 15
Latest updateMay 17

Description

Google Chrome before 24.0.1312.52 does not properly handle image data in PDF documents, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted document.

CVSS vector

AV:N/AC:M/C:N/I:N/A:PExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

NVDgoogle/chrome24.0.1312.51+111

🔴Vulnerability Details

1
GHSA
GHSA-7fxw-8q6c-pcfw: Google Chrome before 242022-05-17
CVE-2012-5157 — Google Chrome vulnerability | cvebase