CVE-2012-2899

{"id": "CVE-2012-2899", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2014-01-05T20:55:03.990", "references": [{"url": "http://googlechromereleases.blogspot.com/2012/09/chrome-for-ios-update_24.html", "source": "chrome-cve-admin@google.com"}, {"url": "https://code.google.com/p/chromium/issues/detail?id=147625", "source": "chrome-cve-admin@google.com"}, {"url": "http://googlechromereleases.blogspot.com/2012/09/chrome-for-ios-update_24.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://code.google.com/p/chromium/issues/detail?id=147625", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-79"}]}], "descriptions": [{"lang": "en", "value": "Google Chrome before 21.0.1180.82 on iOS makes certain incorrect calls to WebView methods that trigger use of an applewebdata: URL, which allows remote attackers to bypass the Same Origin Policy and conduct Universal XSS (UXSS) attacks via vectors involving the document.write method."}, {"lang": "es", "value": "Google Chrome anteriores a 21.0.1180.82 en iOS hacen determinadas llamadas incorrectas a m\u00e9todos WebView que invocan el uso de una URL applewebdata:, lo cual permite a atacantes remotos sortear el la Same Origin Policy y efectuar ataques Universal XSS (UXSS) a trav\u00e9s de vectores que incluyen el m\u00e9todo document.write."}], "lastModified": "2024-11-21T01:39:51.783", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B9717017-30FA-4B12-BAE7-14A61831F2AB", "versionEndIncluding": "21.0.1180.81"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "767C0C1A-EAC4-4F98-9E80-CFDA5069F118"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0E2554F0-0DEB-41A0-A595-6A524F9EC001"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4F542051-CEED-45A4-BB83-937069D07CB2"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.31:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AC926FFC-EF03-46F0-B5B5-02B34571D6C4"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.32:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "24849FF0-F873-4365-9B82-F16AD7F4A291"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.33:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8E784307-0538-4524-94EA-A88B1ABD0E2E"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.34:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5655EFE7-69CB-469F-A00A-D6F3F7F492E4"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.35:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D3B22D68-9E32-4566-8ED1-F1CE87903F98"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.36:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "40DB1183-DFF5-4251-BCDF-2F7696ABBFA0"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.37:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8BD5341A-E508-4E5B-B03F-677D97E5A464"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.38:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E096479F-4C69-445A-8C2B-7201896F401B"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.39:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "25756B8C-FBEB-4D7F-99E6-EA7D27B07B39"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.41:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "41371794-2083-4188-90BE-506419DC0B82"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.46:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "51FF3E52-3E8E-4D2F-ABA3-B7D83219D723"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.47:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "981570FA-6B44-49A8-9C9B-7D5127E90F6C"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.48:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "36D2B7FE-2B20-47CA-9B3C-B726E21659E8"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.49:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "858BDFA4-E9CB-4537-ABA7-4283318CA501"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.50:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "76D0CD04-8EF4-4B6A-BD4F-1DFCDDDD4DED"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.51:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9E912B5D-81F3-4A93-A0E6-B1CFDE2B46EE"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.52:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B578A2BC-9360-428C-9AFE-DC9DB9E0A621"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.53:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9DCB6048-5A18-4FD6-A21B-95B595CF943C"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.54:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "28882288-859D-425C-8BA3-F46D058B61D6"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.55:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "444AD7BB-FE0B-4A51-BA89-EE2647F4E8AE"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.56:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A0692DD3-562D-4BE7-BB61-1549EFFF9CD5"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.57:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5FF70696-70A8-4DFA-A0C3-172A103F3F24"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.59:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "25241621-CBB0-4E39-B901-2F70EE476722"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.60:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1355883C-C184-46C1-9CF7-AA59B0FC61B7"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.61:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DB090D01-9F7E-49CF-8356-80CC03999121"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.62:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A37AB354-581C-42CA-B8E9-9AEAC0B326AF"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.63:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "885EFC87-061C-4EEF-880A-68D7D53BACDA"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.64:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D58B0932-1DF3-4308-8D82-B20564E974F8"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.68:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A8FAD1E6-788F-4295-BFD2-F3CE99B14934"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.69:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DF8AB897-7A45-4360-AFA7-EB7C8690ADD9"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.70:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9EF0FA83-C464-4270-A4E8-1441DF4ECFAD"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.71:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "86B70015-F651-467C-A846-5C97772D91EA"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.72:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C07A549D-48EF-434C-ABBA-0FF7078060D7"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.73:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B573E86E-3512-4DB9-911E-1B27A3BB69DC"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.74:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D2BDB997-D125-4B5D-9680-9AED7D89FD0A"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.75:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0BAF7E49-6795-4848-AADD-40D8B2D5F5BA"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.76:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B7B244B3-86E0-4E1D-96A5-E0B9B50F2ADB"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.77:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A0FF1C67-9CB7-4C78-9F3C-C88AB5A6284D"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.78:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3371BBF5-0B82-4005-96AE-9B604A2FA70B"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.79:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5916EA0D-D763-4650-9AC4-A38C6E8EB052"}, {"criteria": "cpe:2.3:a:google:chrome:21.0.1180.80:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "443C5B0F-8FC6-40E3-AA95-BB8884176002"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:apple:ipad2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E7BFD4E0-321E-4ECB-82A5-80E9CB6E4EED"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "chrome-cve-admin@google.com"}