Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2013-2842Google Chrome vulnerability

CWE-3993 documents3 sources
Severity
7.5HIGHNVD
EPSS
21.1%
top 4.33%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
Apple Iphone OSGoogle Chrome
Timeline
PublishedMay 22
Latest updateMay 17

Description

Use-after-free vulnerability in Google Chrome before 27.0.1453.93 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of widgets.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages2 packages

NVDgoogle/chrome27.0.1453.91+70
NVDapple/iphone_os6.1.4+47

🔴Vulnerability Details

1
GHSA
GHSA-cgmr-jrpg-3jqx: Use-after-free vulnerability in Google Chrome before 272022-05-17

💥Exploits & PoCs

1
Exploit-DB
Google Chrome 26.0.1410.43 (Webkit) - OBJECT Element Use-After-Free (PoC)2013-04-04
CVE-2013-2842 — Google Chrome vulnerability | cvebase