Google Chrome before 18.0.1025308 on Android does not properly restrict access to file: URLs, which allows remote attackers to obtain sensitive information via unspecified vectors, as demonstrated by obtaining credential data, a different vulnerability than CVE-2012-4903.
References
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 01:43
Type | Values Removed | Values Added |
---|---|---|
References | () http://googlechromereleases.blogspot.com/2012/09/chrome-for-android-update.html - Vendor Advisory | |
References | () https://code.google.com/p/chromium/issues/detail?id=144820 - |
Information
Published : 2012-09-13 20:55
Updated : 2024-11-21 01:43
NVD link : CVE-2012-4906
Mitre link : CVE-2012-4906
CVE.ORG link : CVE-2012-4906
JSON object : View
Products Affected
- android
- chrome
CWE
CWE-264
Permissions, Privileges, and Access Controls