7.5

CVE-2013-0879

EPSS 1.68%
Veröffentlicht 23.02.2013 21:55:00
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle chrome-cve-admin@google.com
CVE-Watchlists
Login
Unerledigt
Login

Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, does not properly implement web audio nodes, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 12

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Google ≫ Chrome Version < 25.0.1364.97

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Google ≫ Chrome Version < 25.0.1364.99

Apple ≫ iPhone OS Version-
Apple ≫ macOS X Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.68%	0.814

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

CWE-787 Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

http://lists.apple.com/archives/security-announce/2013/Sep/msg00006.html

http://secunia.com/advisories/54886

http://support.apple.com/kb/HT5934

http://googlechromereleases.blogspot.com/2013/02/stable-channel-update_21.html

http://lists.apple.com/archives/security-announce/2013/Jun/msg00001.html

http://lists.opensuse.org/opensuse-updates/2013-03/msg00045.html

http://support.apple.com/kb/HT5785

https://code.google.com/p/chromium/issues/detail?id=172243

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16505

https://nvd.nist.gov/vuln/detail/CVE-2013-0879

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2013-0879

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2013-0879

EUVD