CVE-2013-0924Google Chrome vulnerability

CWE-2643 documents3 sources
Severity
7.5HIGHNVD
EPSS
0.1%
top 65.20%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Google Chrome
Timeline
PublishedMar 28
Latest updateMay 17

Description

The extension functionality in Google Chrome before 26.0.1410.43 does not verify that use of the permissions API is consistent with file permissions, which has unspecified impact and attack vectors.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDgoogle/chrome26.0.1410.42+41

🔴Vulnerability Details

1
GHSA
GHSA-w8gq-53mf-w5v3: The extension functionality in Google Chrome before 262022-05-17

💬Community

1
Bugzilla
CVE-2013-2152 rhevm: spice service unquoted search path2013-06-05
CVE-2013-0924 — Google Chrome vulnerability | cvebase