CVE-2013-6625Google Chrome vulnerability

CWE-3992 documents2 sources
Severity
6.8MEDIUMNVD
EPSS
1.5%
top 18.77%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Google Chrome
Timeline
PublishedNov 13
Latest updateMay 17

Description

Use-after-free vulnerability in core/dom/ContainerNode.cpp in Blink, as used in Google Chrome before 31.0.1650.48, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging improper handling of DOM range objects in circumstances that require child node removal after a (1) mutation or (2) blur event.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages1 packages

NVDgoogle/chrome31.0.1650.47+43

🔴Vulnerability Details

1
GHSA
GHSA-7j83-22vf-3f6f: Use-after-free vulnerability in core/dom/ContainerNode2022-05-17