CVE-2013-0925

Google Chrome before 26.0.1410.43 does not ensure that an extension has the tabs (aka APIPermission::kTab) permission before providing a URL to this extension, which has unspecified impact and remote attack vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
ChromeCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 42%
VendorProductVersion
googlechrome
𝑥
≤ 26.0.1410.42
googlechrome
26.0.1410.0
googlechrome
26.0.1410.1
googlechrome
26.0.1410.2
googlechrome
26.0.1410.3
googlechrome
26.0.1410.4
googlechrome
26.0.1410.5
googlechrome
26.0.1410.6
googlechrome
26.0.1410.7
googlechrome
26.0.1410.8
googlechrome
26.0.1410.9
googlechrome
26.0.1410.10
googlechrome
26.0.1410.11
googlechrome
26.0.1410.12
googlechrome
26.0.1410.14
googlechrome
26.0.1410.15
googlechrome
26.0.1410.16
googlechrome
26.0.1410.17
googlechrome
26.0.1410.18
googlechrome
26.0.1410.19
googlechrome
26.0.1410.20
googlechrome
26.0.1410.21
googlechrome
26.0.1410.22
googlechrome
26.0.1410.23
googlechrome
26.0.1410.24
googlechrome
26.0.1410.25
googlechrome
26.0.1410.26
googlechrome
26.0.1410.27
googlechrome
26.0.1410.28
googlechrome
26.0.1410.29
googlechrome
26.0.1410.30
googlechrome
26.0.1410.31
googlechrome
26.0.1410.32
googlechrome
26.0.1410.33
googlechrome
26.0.1410.34
googlechrome
26.0.1410.35
googlechrome
26.0.1410.36
googlechrome
26.0.1410.37
googlechrome
26.0.1410.38
googlechrome
26.0.1410.39
googlechrome
26.0.1410.40
googlechrome
26.0.1410.41
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
chromium-browser
raring
Fixed 28.0.1500.52-0ubuntu1.13.04.3
released
quantal
Fixed 28.0.1500.52-0ubuntu1.12.10.3
released
precise
Fixed 28.0.1500.52-0ubuntu1.12.04.2
released
oneiric
ignored
lucid
ignored
hardy
dne
Common Weakness Enumeration
References
http://googlechromereleases.blogspot.com/2013/03/stable-channel-update_26.html
https://code.google.com/p/chromium/issues/detail?id=168442
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16363
http://googlechromereleases.blogspot.com/2013/03/stable-channel-update_26.html
https://code.google.com/p/chromium/issues/detail?id=168442
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16363