6.8

CVE-2013-6635

EPSS 1.16%
Published 07.12.2013 00:55:03
Last modified 11.04.2025 00:51:21
Source cve@mitre.org
Teams watchlist Login
Open Login

Use-after-free vulnerability in the editing implementation in Blink, as used in Google Chrome before 31.0.1650.63, allows remote attackers to cause a denial of service or possibly have unspecified other impact via JavaScript code that triggers removal of a node during processing of the DOM tree, related to CompositeEditCommand.cpp and ReplaceSelectionCommand.cpp.

Affected products Warnungen 0 Metrics 2 CWE 0 References 16

Data is provided by the National Vulnerability Database (NVD)

Google ≫ Chrome Version <= 31.0.1650.62

Google ≫ Chrome Version31.0.1650.0

Google ≫ Chrome Version31.0.1650.2

Google ≫ Chrome Version31.0.1650.3

Google ≫ Chrome Version31.0.1650.4

Google ≫ Chrome Version31.0.1650.5

Google ≫ Chrome Version31.0.1650.6

Google ≫ Chrome Version31.0.1650.7

Google ≫ Chrome Version31.0.1650.8

Google ≫ Chrome Version31.0.1650.9

Google ≫ Chrome Version31.0.1650.10

Google ≫ Chrome Version31.0.1650.11

Google ≫ Chrome Version31.0.1650.12

Google ≫ Chrome Version31.0.1650.13

Google ≫ Chrome Version31.0.1650.14

Google ≫ Chrome Version31.0.1650.15

Google ≫ Chrome Version31.0.1650.16

Google ≫ Chrome Version31.0.1650.17

Google ≫ Chrome Version31.0.1650.18

Google ≫ Chrome Version31.0.1650.19

Google ≫ Chrome Version31.0.1650.20

Google ≫ Chrome Version31.0.1650.22

Google ≫ Chrome Version31.0.1650.23

Google ≫ Chrome Version31.0.1650.25

Google ≫ Chrome Version31.0.1650.26

Google ≫ Chrome Version31.0.1650.27

Google ≫ Chrome Version31.0.1650.28

Google ≫ Chrome Version31.0.1650.29

Google ≫ Chrome Version31.0.1650.30

Google ≫ Chrome Version31.0.1650.31

Google ≫ Chrome Version31.0.1650.32

Google ≫ Chrome Version31.0.1650.33

Google ≫ Chrome Version31.0.1650.34

Google ≫ Chrome Version31.0.1650.35

Google ≫ Chrome Version31.0.1650.36

Google ≫ Chrome Version31.0.1650.37

Google ≫ Chrome Version31.0.1650.38

Google ≫ Chrome Version31.0.1650.39

Google ≫ Chrome Version31.0.1650.41

Google ≫ Chrome Version31.0.1650.42

Google ≫ Chrome Version31.0.1650.43

Google ≫ Chrome Version31.0.1650.44

Google ≫ Chrome Version31.0.1650.45

Google ≫ Chrome Version31.0.1650.46

Google ≫ Chrome Version31.0.1650.47

Google ≫ Chrome Version31.0.1650.48

Google ≫ Chrome Version31.0.1650.49

Google ≫ Chrome Version31.0.1650.50

Google ≫ Chrome Version31.0.1650.51

Google ≫ Chrome Version31.0.1650.52

Google ≫ Chrome Version31.0.1650.53

Google ≫ Chrome Version31.0.1650.54

Google ≫ Chrome Version31.0.1650.55

Google ≫ Chrome Version31.0.1650.57

Google ≫ Chrome Version31.0.1650.58

Google ≫ Chrome Version31.0.1650.59

Google ≫ Chrome Version31.0.1650.60

Google ≫ Chrome Version31.0.1650.61

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	1.16%	0.777

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	6.8	8.6	6.4	AV:N/AC:M/Au:N/C:P/I:P/A:P

http://support.apple.com/kb/HT6162

http://support.apple.com/kb/HT6163

https://support.apple.com/kb/HT6537

http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html

http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html

Vendor Advisory

http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html

http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html

http://secunia.com/advisories/56217

http://www.debian.org/security/2013/dsa-2811

http://www.securitytracker.com/id/1029442

http://support.apple.com/kb/HT6145

https://code.google.com/p/chromium/issues/detail?id=314469

https://src.chromium.org/viewvc/blink?revision=161598&view=revision

Patch

https://nvd.nist.gov/vuln/detail/CVE-2013-6635

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2013-6635

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2013-6635

EUVD