CVE-2010-2110

EUVD-2010-2126
Google Chrome before 5.0.375.55 does not properly execute JavaScript code in the extension context, which has unspecified impact and remote attack vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 39%
Affected Products (NVD)
VendorProductVersion
googlechrome
𝑥
< 5.0.375.55
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
chromium-browser
dapper
dne
hardy
dne
jaunty
dne
karmic
dne
lucid
Fixed 5.0.375.70~r48679-0ubuntu0.10.04.1
released
References
http://code.google.com/p/chromium/issues/detail?id=42228
http://googlechromereleases.blogspot.com/2010/05/stable-channel-update.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12123
http://code.google.com/p/chromium/issues/detail?id=42228
http://googlechromereleases.blogspot.com/2010/05/stable-channel-update.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12123