CVE-2013-2832Improper Restriction of Operations within the Bounds of a Memory Buffer in Google Chrome OS

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer3 documents3 sources
Severity
5.0MEDIUMNVD
EPSS
0.3%
top 51.73%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Google Chrome OS
Timeline
PublishedApr 16
Latest updateMay 17

Description

The Buffer::Set function in core/cross/buffer.cc in the O3D plug-in in Google Chrome OS before 26.0.1410.57 does not prevent uninitialized data from remaining in a buffer, which might allow remote attackers to obtain sensitive information via unspecified vectors.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDgoogle/chrome_os26.0.1410.56+53

🔴Vulnerability Details

2
GHSA
GHSA-prr7-r48q-37cm: The Buffer::Set function in core/cross/buffer2022-05-17
CVEList
CVE-2013-2832: The Buffer::Set function in core/cross/buffer2013-04-16
CVE-2013-2832 — Google Chrome OS vulnerability | cvebase