7.5

CVE-2010-1237

Google Chrome 4.1 BETA before 4.1.249.1036 allows remote attackers to cause a denial of service (memory error) or possibly have unspecified other impact via an empty SVG element.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
GoogleChrome Version4.1.249.0
GoogleChrome Version4.1.249.1001
GoogleChrome Version4.1.249.1004
GoogleChrome Version4.1.249.1006
GoogleChrome Version4.1.249.1007
GoogleChrome Version4.1.249.1008
GoogleChrome Version4.1.249.1009
GoogleChrome Version4.1.249.1010
GoogleChrome Version4.1.249.1011
GoogleChrome Version4.1.249.1012
GoogleChrome Version4.1.249.1013
GoogleChrome Version4.1.249.1014
GoogleChrome Version4.1.249.1015
GoogleChrome Version4.1.249.1016
GoogleChrome Version4.1.249.1017
GoogleChrome Version4.1.249.1018
GoogleChrome Version4.1.249.1019
GoogleChrome Version4.1.249.1020
GoogleChrome Version4.1.249.1021
GoogleChrome Version4.1.249.1022
GoogleChrome Version4.1.249.1023
GoogleChrome Version4.1.249.1024
GoogleChrome Version4.1.249.1025
GoogleChrome Version4.1.249.1026
GoogleChrome Version4.1.249.1027
GoogleChrome Version4.1.249.1028
GoogleChrome Version4.1.249.1029
GoogleChrome Version4.1.249.1030
GoogleChrome Version4.1.249.1031
GoogleChrome Version4.1.249.1032
GoogleChrome Version4.1.249.1033
GoogleChrome Version4.1.249.1034
GoogleChrome Version4.1.249.1035
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.52% 0.641
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.