CVE-2012-2877

EPSS 0.89%
Published 26.09.2012 10:56:04
Last modified 11.04.2025 00:51:21
Source chrome-cve-admin@google.com
Teams watchlist Login
Open Login

The extension system in Google Chrome before 22.0.1229.79 does not properly handle modal dialogs, which allows remote attackers to cause a denial of service (application crash) via unspecified vectors.

Affected products Warnungen 0 Metrics 2 CWE 1 References 8

Data is provided by the National Vulnerability Database (NVD)

Google ≫ Chrome Version <= 22.0.1229.78

Google ≫ Chrome Version22.0.1229.0

Google ≫ Chrome Version22.0.1229.1

Google ≫ Chrome Version22.0.1229.2

Google ≫ Chrome Version22.0.1229.3

Google ≫ Chrome Version22.0.1229.4

Google ≫ Chrome Version22.0.1229.6

Google ≫ Chrome Version22.0.1229.7

Google ≫ Chrome Version22.0.1229.8

Google ≫ Chrome Version22.0.1229.9

Google ≫ Chrome Version22.0.1229.10

Google ≫ Chrome Version22.0.1229.11

Google ≫ Chrome Version22.0.1229.12

Google ≫ Chrome Version22.0.1229.14

Google ≫ Chrome Version22.0.1229.16

Google ≫ Chrome Version22.0.1229.17

Google ≫ Chrome Version22.0.1229.18

Google ≫ Chrome Version22.0.1229.20

Google ≫ Chrome Version22.0.1229.21

Google ≫ Chrome Version22.0.1229.22

Google ≫ Chrome Version22.0.1229.23

Google ≫ Chrome Version22.0.1229.24

Google ≫ Chrome Version22.0.1229.25

Google ≫ Chrome Version22.0.1229.26

Google ≫ Chrome Version22.0.1229.27

Google ≫ Chrome Version22.0.1229.28

Google ≫ Chrome Version22.0.1229.29

Google ≫ Chrome Version22.0.1229.31

Google ≫ Chrome Version22.0.1229.32

Google ≫ Chrome Version22.0.1229.33

Google ≫ Chrome Version22.0.1229.35

Google ≫ Chrome Version22.0.1229.36

Google ≫ Chrome Version22.0.1229.37

Google ≫ Chrome Version22.0.1229.39

Google ≫ Chrome Version22.0.1229.48

Google ≫ Chrome Version22.0.1229.49

Google ≫ Chrome Version22.0.1229.50

Google ≫ Chrome Version22.0.1229.51

Google ≫ Chrome Version22.0.1229.52

Google ≫ Chrome Version22.0.1229.53

Google ≫ Chrome Version22.0.1229.54

Google ≫ Chrome Version22.0.1229.55

Google ≫ Chrome Version22.0.1229.56

Google ≫ Chrome Version22.0.1229.57

Google ≫ Chrome Version22.0.1229.58

Google ≫ Chrome Version22.0.1229.59

Google ≫ Chrome Version22.0.1229.60

Google ≫ Chrome Version22.0.1229.62

Google ≫ Chrome Version22.0.1229.63

Google ≫ Chrome Version22.0.1229.64

Google ≫ Chrome Version22.0.1229.65

Google ≫ Chrome Version22.0.1229.67

Google ≫ Chrome Version22.0.1229.76

Opensuse ≫ Opensuse Version12.1

Opensuse ≫ Opensuse Version12.2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.89%	0.734

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:N/A:P

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://googlechromereleases.blogspot.com/2012/09/stable-channel-update_25.html

http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00012.html

https://code.google.com/p/chromium/issues/detail?id=137707

https://exchange.xforce.ibmcloud.com/vulnerabilities/78832

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15857

https://nvd.nist.gov/vuln/detail/CVE-2012-2877

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2012-2877

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2012-2877

EUVD