Vulnerability in Google Chrome
CVE-2013-6621
Use-after-free vulnerability in Google Chrome before 31.0.1650.48 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the x-webkit-speech attribute in a text INPUT element.
EPSS: 0.015 (81.4th percentile) — read the EPSS interpretation.
Affected products
- Google Chrome — versions 31.0.1650.0, 31.0.1650.2, 31.0.1650.3
- Debian Debian_linux — versions 7.0, 8.0
- Opensuse — versions 12.2, 12.3, 13.1
- N/a — versions n/a
Weakness classification (CWE)
References
- cve@mitre.org (x_refsource_CONFIRM, Exploit)
- openSUSE-SU-2014:0065 (vendor-advisory, Third Party Advisory, x_refsource_SUSE)
- oval:org.mitre.oval:def:19006 (x_refsource_OVAL, signature, vdb-entry)
- cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)
- openSUSE-SU-2013:1776 (vendor-advisory, Third Party Advisory, x_refsource_SUSE)
- DSA-2799 (vendor-advisory, Third Party Advisory, x_refsource_DEBIAN)
- openSUSE-SU-2013:1861 (vendor-advisory, Third Party Advisory, x_refsource_SUSE)
- openSUSE-SU-2013:1777 (vendor-advisory, Third Party Advisory, x_refsource_SUSE)