← Back

CVE-2011-2170

nvd nist
Published: May 24, 2011Modified: Apr 29, 2026

JSON object

Loading...
4.4
Vector
AV:L/AC:M/Au:N/C:P/I:P/A:P
Exploitability: 3.4 / Impact: 6.4
Source: NVD

Description

Google Chrome OS before R12 0.12.433.38 Beta, when Guest mode is enabled, does not prevent changes on the about:flags page, which has unspecified impact and local attack vectors.

Affected (31)

Products: Google: Chrome Os
Google
1 product
Chrome Os
Configuration A
31 vulnerable
Vulnerable SoftwareAffected Versions
Google
Chrome Os
Up to 0.12.433.35
Chrome Os
Version 0.10.142.3
Chrome Os
Version 0.10.146.1
Chrome Os
Version 0.10.156.18
Chrome Os
Version 0.10.156.1
Chrome Os
Version 0.10.156.20
Chrome Os
Version 0.10.156.30
Chrome Os
Version 0.10.156.34
Chrome Os
Version 0.10.156.36
Chrome Os
Version 0.10.156.46
Chrome Os
Version 0.10.156.4
Chrome Os
Version 0.10.156.50
Chrome Os
Version 0.10.156.54
Chrome Os
Version 0.11.227.0
Chrome Os
Version 0.11.257.14
Chrome Os
Version 0.11.257.18
Chrome Os
Version 0.11.257.32
Chrome Os
Version 0.11.257.39
Chrome Os
Version 0.11.257.3
Chrome Os
Version 0.11.257.44
Chrome Os
Version 0.11.257.91
Chrome Os
Version 0.12.362.2
Chrome Os
Version 0.12.397.0
Chrome Os
Version 0.12.433.14
Chrome Os
Version 0.12.433.22
Chrome Os
Version 0.12.433.28
Chrome Os
Version 0.12.433.9
Chrome Os
Version 0.9.126.0
Chrome Os
Version 8.0.552.342
Chrome Os
Version 8.0.552.343
Chrome Os
Version 8.0.552.344

Related CWEs

CWE-20
Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (2)

Source: cve@mitre.org
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.