CVE-2011-2170

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2011-2170
Google Chrome OS before R12 0.12.433.38 Beta, when Guest mode is enabled, does not prevent changes on the about:flags page, which has unspecified impact and local attack vectors.

4.4 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:M/Au:N/C:P/I:P/A:P

Exploitability : 3.4 / Impact : 6.4

Access Vector LOCAL

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References
Link Resource
http://googlechromereleases.blogspot.com/2011/05/chrome-os-beta-channel-update_16.html Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:google:chrome_os:*:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:0.9.126.0:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:0.10.142.3:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:0.10.146.1:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:0.10.156.1:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:0.10.156.4:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:0.10.156.18:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:0.10.156.20:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:0.10.156.30:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:0.10.156.34:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:0.10.156.36:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:0.10.156.46:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:0.10.156.50:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:0.10.156.54:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:0.11.227.0:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:0.11.257.3:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:0.11.257.14:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:0.11.257.18:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:0.11.257.32:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:0.11.257.39:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:0.11.257.44:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:0.11.257.91:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:0.12.362.2:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:0.12.397.0:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:0.12.433.9:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:0.12.433.14:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:0.12.433.22:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:0.12.433.28:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:8.0.552.342:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:8.0.552.343:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:8.0.552.344:*:*:*:*:*:*:*
History

No history.

Information

Published : 2011-05-24 23:55

Updated : 2024-02-04 17:54

NVD link : CVE-2011-2170

Mitre link : CVE-2011-2170

CVE.ORG link : CVE-2011-2170

JSON object : View

Products Affected

google

  • chrome_os
CWE
CWE-20

Improper Input Validation