Main Vulnerability Database Vulnerabilities #VU43950

Input validation error in Google Chrome - CVE-2012-2821

Published: June 27, 2012 / Updated: August 11, 2020

Vulnerability identifier: #VU43950

CSH Severity: Medium

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2012-2821

CWE-ID: CWE-20

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Google

Affected software:
Google Chrome

Detailed vulnerability description

The vulnerability allows a remote non-authenticated attacker to read and manipulate data.

The autofill implementation in Google Chrome before 20.0.1132.43 does not properly display text, which has unspecified impact and remote attack vectors.

How to mitigate CVE-2012-2821

Install update from vendor's website.

Sources

http://code.google.com/p/chromium/issues/detail?id=122925
http://googlechromereleases.blogspot.com/2012/06/stable-channel-update_26.html
https://hermes.opensuse.org/messages/15075728
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15565

Input validation error in Google Chrome - CVE-2012-2821

Detailed vulnerability description

How to mitigate CVE-2012-2821

Sources

Please verify you're human