4.3
CVE-2011-1810
- EPSS 1.07%
- Veröffentlicht 09.06.2011 19:55:02
- Zuletzt bearbeitet 16.06.2026 23:30:09
- Quelle chrome-cve-admin@google.com
- CVE-Watchlists
- Unerledigt
The Cascading Style Sheets (CSS) implementation in Google Chrome before 12.0.742.91 does not properly restrict access to the visit history, which allows remote attackers to obtain sensitive information via unspecified vectors.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.07% | 0.604 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:P/I:N/A:N
|
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
http://googlechromereleases.blogspot.com/2011/06/chrome-stable-release.html
http://secunia.com/advisories/44829
http://www.securityfocus.com/bid/48129
http://code.google.com/p/chromium/issues/detail?id=75643
http://osvdb.org/72780
https://exchange.xforce.ibmcloud.com/vulnerabilities/67893
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14433