Vulnerability Details : CVE-2013-6637
Multiple unspecified vulnerabilities in Google Chrome before 31.0.1650.63 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
Vulnerability category: Denial of service
Products affected by CVE-2013-6637
- cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.43:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.42:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.34:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.33:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.25:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.23:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.15:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.14:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.7:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.6:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.5:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.45:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.44:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.36:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.35:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.27:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.26:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.17:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.16:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.9:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.8:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.46:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.38:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.37:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.29:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.28:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.19:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.18:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.11:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.10:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.2:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.0:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.41:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.39:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.32:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.31:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.30:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.22:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.20:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.13:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.12:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.4:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.3:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.61:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.60:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.52:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.51:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.48:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.49:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.57:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.55:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.59:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.58:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.50:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.54:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.53:*:*:*:*:*:*:*
- cpe:2.3:a:google:chrome:31.0.1650.47:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2013-6637
0.83%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 80 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2013-6637
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
References for CVE-2013-6637
-
http://www.debian.org/security/2013/dsa-2811
Debian -- Security Information -- DSA-2811-1 chromium-browser
-
https://code.google.com/p/chromium/issues/detail?id=319914
319914 - Use-after-free in v8::internal::GlobalHandles::Destroy - chromium - Monorail
-
https://code.google.com/p/chromium/issues/detail?id=319722
319722 - Heap-buffer-overflow in v8::internal::ExternalByteArray::SetValue - chromium - Monorail
-
https://code.google.com/p/chromium/issues/detail?id=322554
322554 - Heap-use-after-free in WebCore::MediaStreamAudioSourceNode::process - chromium - Monorail
-
http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html
openSUSE-SU-2014:0065-1: moderate: update for chromium
-
https://code.google.com/p/chromium/issues/detail?id=319860
319860 - OOB read in V8 - chromium - Monorail
-
https://code.google.com/p/chromium/issues/detail?id=317999
317999 - Security: Integer overflow leading to exploitable buffer overflow on 32-bit when parsing encrypted mp4 - chromium - Monorail
-
https://code.google.com/p/chromium/issues/detail?id=320313
320313 - Heap-use-after-free in base::internal::Invoker<1, base::internal::BindState<base::internal::RunnableAdapter<void - chromium - Monorail
-
https://code.google.com/p/chromium/issues/detail?id=313435
313435 - Security: Prerendered pages can add incorrect alias URLs and intercept future navigations to them - chromium - Monorail
-
http://lists.opensuse.org/opensuse-updates/2013-12/msg00090.html
openSUSE-SU-2013:1927-1: moderate: update for chromium
-
https://code.google.com/p/chromium/issues/detail?id=300892
300892 - Heap-use-after-free in WebCore::Document::updateHoverActiveState - chromium - Monorail
-
http://www.securitytracker.com/id/1029442
Google Chrome Multiple Bugs Let Remote Users Execute Arbitrary Code, Conduct Session Fixation Attacks, and Spoof the Address Bar - SecurityTracker
-
https://code.google.com/p/chromium/issues/detail?id=305904
305904 - Heap-use-after-free in WebCore::RenderBlock::determineStartPosition - chromium - Monorail
-
https://code.google.com/p/chromium/issues/detail?id=325501
325501 - Tracking bug for internal security fixes for Chrome 31, Release 1 - chromium - Monorail
-
http://lists.opensuse.org/opensuse-updates/2013-12/msg00096.html
openSUSE-SU-2013:1933-1: moderate: update for chromium
-
https://code.google.com/p/chromium/issues/detail?id=319835
319835 - OOB write in V8 (only 64bit) - chromium - Monorail
-
http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html
Chrome Releases: Stable Channel UpdateVendor Advisory
-
https://code.google.com/p/chromium/issues/detail?id=308988
308988 - Use-after-free in v8::HandleScope::HandleScope - chromium - Monorail
Jump to