Home

CVE-2011-2863

Description

Insufficient policy enforcement in V8 in Google Chrome prior to 14.0.0.0 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.

Risk Information

Base Score
6.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
0.186

Associated Vulnerability

VulnerabilityOS Platform
Multiple vulnerabilities affected in Google Chrome (x64) 13.0.782.99Windows
Multiple vulnerabilities affected in Google Chrome 13.0.782.99Windows
Multiple vulnerabilities affected in Google Chrome 13.0.782.99 (For Debian)Linux
Multiple vulnerabilities affected in Google Chrome 13.0.782.99 (For Centos)Linux
Multiple vulnerabilities affected in Google Chrome 13.0.782.99 (For RedHat)Linux
Multiple vulnerabilities affected in Google Chrome 13.0.782.99 (For Suse)Linux
Multiple vulnerabilities affected in Google Chrome 13.0.782.99 (For Ubuntu)Linux

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-343228Google Chrome (x64) (131.0.6778.85, 131.0.6778.86)
PATCH-343227Google Chrome (131.0.6778.85, 131.0.6778.86)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234