CVE-2013-0910

Google Chrome before 25.0.1364.152 does not properly manage the interaction between the browser process and renderer processes during authorization of the loading of a plug-in, which makes it easier for remote attackers to bypass intended access restrictions via vectors involving a blocked plug-in.
Severity
UNKNOWN
AV:N/AC:L/Au:N/C:P/I:P/A:P
Atk. Vector
NETWORK
Atk. Complexity
LOW
Base Score
CVSS 3.x
EPSS Score
Percentile: 80%
VendorProductVersion
googlechrome
𝑥
≤ 25.0.1364.126
googlechrome
25.0.1364.0
googlechrome
25.0.1364.1
googlechrome
25.0.1364.2
googlechrome
25.0.1364.3
googlechrome
25.0.1364.5
googlechrome
25.0.1364.7
googlechrome
25.0.1364.8
googlechrome
25.0.1364.9
googlechrome
25.0.1364.10
googlechrome
25.0.1364.11
googlechrome
25.0.1364.12
googlechrome
25.0.1364.13
googlechrome
25.0.1364.14
googlechrome
25.0.1364.15
googlechrome
25.0.1364.16
googlechrome
25.0.1364.17
googlechrome
25.0.1364.18
googlechrome
25.0.1364.19
googlechrome
25.0.1364.20
googlechrome
25.0.1364.21
googlechrome
25.0.1364.22
googlechrome
25.0.1364.23
googlechrome
25.0.1364.24
googlechrome
25.0.1364.25
googlechrome
25.0.1364.26
googlechrome
25.0.1364.27
googlechrome
25.0.1364.28
googlechrome
25.0.1364.29
googlechrome
25.0.1364.30
googlechrome
25.0.1364.31
googlechrome
25.0.1364.32
googlechrome
25.0.1364.33
googlechrome
25.0.1364.34
googlechrome
25.0.1364.35
googlechrome
25.0.1364.36
googlechrome
25.0.1364.37
googlechrome
25.0.1364.38
googlechrome
25.0.1364.39
googlechrome
25.0.1364.40
googlechrome
25.0.1364.41
googlechrome
25.0.1364.42
googlechrome
25.0.1364.43
googlechrome
25.0.1364.44
googlechrome
25.0.1364.45
googlechrome
25.0.1364.46
googlechrome
25.0.1364.47
googlechrome
25.0.1364.48
googlechrome
25.0.1364.49
googlechrome
25.0.1364.50
googlechrome
25.0.1364.51
googlechrome
25.0.1364.52
googlechrome
25.0.1364.53
googlechrome
25.0.1364.54
googlechrome
25.0.1364.55
googlechrome
25.0.1364.56
googlechrome
25.0.1364.57
googlechrome
25.0.1364.58
googlechrome
25.0.1364.61
googlechrome
25.0.1364.62
googlechrome
25.0.1364.63
googlechrome
25.0.1364.65
googlechrome
25.0.1364.66
googlechrome
25.0.1364.67
googlechrome
25.0.1364.68
googlechrome
25.0.1364.70
googlechrome
25.0.1364.72
googlechrome
25.0.1364.73
googlechrome
25.0.1364.74
googlechrome
25.0.1364.75
googlechrome
25.0.1364.76
googlechrome
25.0.1364.77
googlechrome
25.0.1364.78
googlechrome
25.0.1364.79
googlechrome
25.0.1364.80
googlechrome
25.0.1364.81
googlechrome
25.0.1364.82
googlechrome
25.0.1364.84
googlechrome
25.0.1364.85
googlechrome
25.0.1364.86
googlechrome
25.0.1364.87
googlechrome
25.0.1364.88
googlechrome
25.0.1364.89
googlechrome
25.0.1364.90
googlechrome
25.0.1364.91
googlechrome
25.0.1364.92
googlechrome
25.0.1364.93
googlechrome
25.0.1364.95
googlechrome
25.0.1364.98
googlechrome
25.0.1364.99
googlechrome
25.0.1364.108
googlechrome
25.0.1364.110
googlechrome
25.0.1364.112
googlechrome
25.0.1364.113
googlechrome
25.0.1364.114
googlechrome
25.0.1364.115
googlechrome
25.0.1364.116
googlechrome
25.0.1364.117
googlechrome
25.0.1364.118
googlechrome
25.0.1364.119
googlechrome
25.0.1364.120
googlechrome
25.0.1364.121
googlechrome
25.0.1364.122
googlechrome
25.0.1364.123
googlechrome
25.0.1364.124
googlechrome
25.0.1364.125
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
chromium-browser
quantal
Fixed 25.0.1364.160-0ubuntu0.12.10.1
released
precise
Fixed 25.0.1364.160-0ubuntu0.12.04.1
released
oneiric
Fixed 25.0.1364.160-0ubuntu0.11.10.1
released
lucid
Fixed 25.0.1364.160-0ubuntu0.10.04.1
released
hardy
dne