CVE-2013-0895Path Traversal in Google Chrome

CWE-22Path Traversal2 documents2 sources
Severity
7.5HIGHNVD
EPSS
0.4%
top 41.71%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Google Chrome
Timeline
PublishedFeb 23
Latest updateMay 17

Description

Google Chrome before 25.0.1364.97 on Linux, and before 25.0.1364.99 on Mac OS X, does not properly handle pathnames during copy operations, which might make it easier for remote attackers to execute arbitrary programs via unspecified vectors.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDgoogle/chrome< 25.0.1364.97+1

🔴Vulnerability Details

1
GHSA
GHSA-pj4q-8wxc-x28f: Google Chrome before 252022-05-17
CVE-2013-0895 — Path Traversal in Google Chrome | cvebase