CVE-2013-2879 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Vector
NIST	NIST	5.8 UNKNOWN	NETWORK	MEDIUM	AV:N/AC:M/Au:N/C:P/I:P/A:N
Chrome	CNA	---			---
CVE	ADP	---			---

Base Score

CVSS 3.x

EPSS Score

Percentile: 63%

Vendor	Product	Version
google	chrome	𝑥 ≤ 28.0.1500.70
google	chrome	28.0.1500.0
google	chrome	28.0.1500.2
google	chrome	28.0.1500.3
google	chrome	28.0.1500.4
google	chrome	28.0.1500.5
google	chrome	28.0.1500.6
google	chrome	28.0.1500.8
google	chrome	28.0.1500.9
google	chrome	28.0.1500.10
google	chrome	28.0.1500.11
google	chrome	28.0.1500.12
google	chrome	28.0.1500.13
google	chrome	28.0.1500.14
google	chrome	28.0.1500.15
google	chrome	28.0.1500.16
google	chrome	28.0.1500.17
google	chrome	28.0.1500.18
google	chrome	28.0.1500.19
google	chrome	28.0.1500.20
google	chrome	28.0.1500.21
google	chrome	28.0.1500.22
google	chrome	28.0.1500.23
google	chrome	28.0.1500.24
google	chrome	28.0.1500.25
google	chrome	28.0.1500.26
google	chrome	28.0.1500.27
google	chrome	28.0.1500.28
google	chrome	28.0.1500.29
google	chrome	28.0.1500.31
google	chrome	28.0.1500.32
google	chrome	28.0.1500.33
google	chrome	28.0.1500.34
google	chrome	28.0.1500.35
google	chrome	28.0.1500.36
google	chrome	28.0.1500.37
google	chrome	28.0.1500.38
google	chrome	28.0.1500.39
google	chrome	28.0.1500.40
google	chrome	28.0.1500.41
google	chrome	28.0.1500.42
google	chrome	28.0.1500.43
google	chrome	28.0.1500.44
google	chrome	28.0.1500.45
google	chrome	28.0.1500.46
google	chrome	28.0.1500.47
google	chrome	28.0.1500.48
google	chrome	28.0.1500.49
google	chrome	28.0.1500.50
google	chrome	28.0.1500.51
google	chrome	28.0.1500.52
google	chrome	28.0.1500.53
google	chrome	28.0.1500.54
google	chrome	28.0.1500.56
google	chrome	28.0.1500.58
google	chrome	28.0.1500.59
google	chrome	28.0.1500.60
google	chrome	28.0.1500.61
google	chrome	28.0.1500.62
google	chrome	28.0.1500.63
google	chrome	28.0.1500.64
google	chrome	28.0.1500.66
google	chrome	28.0.1500.68
debian	debian_linux	7.0

𝑥

= Vulnerable software versions

Ubuntu Releases

Ubuntu Product

Codename

chromium-browser

raring	Fixed 28.0.1500.71-0ubuntu1.13.04.1 released
quantal	Fixed 28.0.1500.71-0ubuntu1.12.10.1 released
precise	Fixed 28.0.1500.71-0ubuntu1.12.04.1 released
lucid	ignored

Common Weakness Enumeration

CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References

http://git.chromium.org/gitweb/?p=chromium/chromium.git%3Ba=commit%3Bh=8a8eb83276778c9fbcf9ebcd4436077269b73074

http://git.chromium.org/gitweb/?p=chromium/chromium.git%3Ba=commit%3Bh=f0aa298677a1afb9a40b36e32bc9c4d9b4861eac

http://googlechromereleases.blogspot.com/2013/07/stable-channel-update.html

http://www.debian.org/security/2013/dsa-2724

https://code.google.com/p/chromium/issues/detail?id=252062

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17177

http://git.chromium.org/gitweb/?p=chromium/chromium.git%3Ba=commit%3Bh=8a8eb83276778c9fbcf9ebcd4436077269b73074

http://git.chromium.org/gitweb/?p=chromium/chromium.git%3Ba=commit%3Bh=f0aa298677a1afb9a40b36e32bc9c4d9b4861eac

http://googlechromereleases.blogspot.com/2013/07/stable-channel-update.html

http://www.debian.org/security/2013/dsa-2724

https://code.google.com/p/chromium/issues/detail?id=252062

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17177