7.5
CVE-2012-5117
- EPSS 0.96%
- Veröffentlicht 07.11.2012 11:43:14
- Zuletzt bearbeitet 16.06.2026 23:46:16
- Quelle chrome-cve-admin@google.com
- CVE-Watchlists
- Unerledigt
Google Chrome before 23.0.1271.64 does not properly restrict the loading of an SVG subresource in the context of an IMG element, which has unspecified impact and remote attack vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.96% | 0.567 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://googlechromereleases.blogspot.com/2012/11/stable-channel-release-and-beta-channel.html
http://www.securityfocus.com/bid/56413
http://osvdb.org/87076
https://code.google.com/p/chromium/issues/detail?id=145915
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15912