CVE-2011-1810

high

Description

The Cascading Style Sheets (CSS) implementation in Google Chrome before 12.0.742.91 does not properly restrict access to the visit history, which allows remote attackers to obtain sensitive information via unspecified vectors.

References

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14433

https://exchange.xforce.ibmcloud.com/vulnerabilities/67893

http://www.securityfocus.com/bid/48129

http://secunia.com/advisories/44829

http://osvdb.org/72780

http://googlechromereleases.blogspot.com/2011/06/chrome-stable-release.html

http://code.google.com/p/chromium/issues/detail?id=75643

Details

Source: Mitre, NVD

Published: 2011-06-09

Updated: 2023-11-07

Risk Information

CVSS v2

Base Score: 4.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Severity: High

Detections

Analytics