CVE-2011-2848

Published: Sep 19, 2011Modified: Apr 29, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

Google Chrome before 14.0.835.163 allows user-assisted remote attackers to spoof the URL bar via vectors related to the forward button.

Affected (1)

Products: Google: Chrome

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Google Chrome	Before 14.0.835.163

Related CWEs

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (10)

http://code.google.com/p/chromium/issues/detail?id=89564

Source: chrome-cve-admin@google.com

http://googlechromereleases.blogspot.com/2011/09/stable-channel-update_16.html

Source: chrome-cve-admin@google.com

http://osvdb.org/75548

Source: chrome-cve-admin@google.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/69874

Source: chrome-cve-admin@google.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13915

Source: chrome-cve-admin@google.com

http://code.google.com/p/chromium/issues/detail?id=89564

Source: af854a3a-2127-422b-91ae-364da2661108

http://googlechromereleases.blogspot.com/2011/09/stable-channel-update_16.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://osvdb.org/75548

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/69874

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13915

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.