CVSS: 10.0EPSS: 0%CPEs: 70EXPL: 0CVE-2012-5141
https://notcve.org/view.php?id=CVE-2012-5141
Google Chrome before 23.0.1271.97 does not properly restrict instantiation of the Chromoting client plug-in, which has unspecified impact and attack vectors. Google Chrome antes de 23.0.1271.97 no restringe correctamente creación de instancias del complemento cliente Chromoting, lo que tiene un impacto y vectores de ataque no especificados. • http://googlechromereleases.blogspot.com/2012/12/stable-channel-update.html http://lists.opensuse.org/opensuse-updates/2012-12/msg00073.html https://code.google.com/p/chromium/issues/detail?id=160456 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15428 •
CVSS: 10.0EPSS: 1%CPEs: 68EXPL: 0CVE-2012-5137
https://notcve.org/view.php?id=CVE-2012-5137
Use-after-free vulnerability in Google Chrome before 23.0.1271.95 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the Media Source API. vulnerabilidad de uso después de liberación en Google Chrome antes de v23.0.1271.95 permite a atacantes remotos provocar una denegación de servicio o posiblemente tener un impacto no especificado a través de vectores relacionados con la API Media Source. • http://googlechromereleases.blogspot.com/2012/11/stable-channel-update_29.html http://lists.opensuse.org/opensuse-security-announce/2012-12/msg00004.html http://secunia.com/advisories/51447 http://www.securityfocus.com/bid/56741 https://code.google.com/p/chromium/issues/detail?id=162835 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15819 • CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 68EXPL: 0CVE-2012-5138
https://notcve.org/view.php?id=CVE-2012-5138
Google Chrome before 23.0.1271.95 does not properly handle file paths, which has unspecified impact and attack vectors. Google Chrome antes de v23.0.1271.95 no controla correctamente las rutas de archivos, lo que tiene impacto y vectores de ataque no especificados. • http://googlechromereleases.blogspot.com/2012/11/stable-channel-update_29.html http://lists.opensuse.org/opensuse-security-announce/2012-12/msg00004.html http://secunia.com/advisories/51447 http://www.securityfocus.com/bid/56741 https://code.google.com/p/chromium/issues/detail?id=161564 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15638 •
CVSS: 7.5EPSS: 2%CPEs: 64EXPL: 0CVE-2012-5135
https://notcve.org/view.php?id=CVE-2012-5135
Use-after-free vulnerability in Google Chrome before 23.0.1271.91 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to printing. Vulnerabilidad de uso después de liberación en Google Chrome antes de v23.0.1271.91 permite a atacantes remotos provocar una denegación de servicio o posiblemente tener otro impacto no especificado a través de vectores relacionados con la impresión. • http://googlechromereleases.blogspot.com/2012/11/stable-channel-update.html http://lists.opensuse.org/opensuse-security-announce/2012-12/msg00004.html http://osvdb.org/87886 http://www.securityfocus.com/bid/56684 http://www.securitytracker.com/id?1027815 https://code.google.com/p/chromium/issues/detail?id=159165 https://exchange.xforce.ibmcloud.com/vulnerabilities/80295 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15768 • CWE-399: Resource Management Errors •
CVSS: 6.8EPSS: 1%CPEs: 64EXPL: 0CVE-2012-5136
https://notcve.org/view.php?id=CVE-2012-5136
Google Chrome before 23.0.1271.91 does not properly perform a cast of an unspecified variable during handling of the INPUT element, which allows remote attackers to cause a denial of service or possibly have unknown other impact via a crafted HTML document. Google Chrome antes de v23.0.1271.91 no realiza adecuadamente una conversión de una variable específica durante la manipulación del elemento INPUT, lo que permite a atacantes remotos provocar una denegación de servicio o posiblemente otro impacto a través de un documento HTML manipulado. • http://googlechromereleases.blogspot.com/2012/11/stable-channel-update.html http://lists.opensuse.org/opensuse-security-announce/2012-12/msg00004.html http://osvdb.org/87885 http://www.securityfocus.com/bid/56684 http://www.securitytracker.com/id?1027815 https://code.google.com/p/chromium/issues/detail?id=159829 https://exchange.xforce.ibmcloud.com/vulnerabilities/80296 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15929 • CWE-20: Improper Input Validation •