CVE-2012-5112

Advisory lineage Upstream: 0 Downstream: 2
Deferred
Published: 11 Oct 2012, 10:00
Last modified:06 Aug 2024, 20:58

Vulnerability Summary

Overall Risk (default)
high
70/100
CVSS Score
10 HIGH
v2.0 (nvd)
EPSS Score
4.59% LOW
5% probability 0.00%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

11 Oct 2012, 10:00
Published
Vulnerability first disclosed
06 Aug 2024, 20:58
Last Modified
Vulnerability information updated

Description

Use-after-free vulnerability in the SVG implementation in WebKit, as used in Google Chrome before 22.0.1229.94, allows remote attackers to execute arbitrary code via unspecified vectors.

CVSS Metrics

  • v2.0HIGHScore: 10AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS Trends

Current EPSS score: 4.59% Percentile: 89%

Techniques & Countermeasures

  • CWE-399Resource Management Errors

    Weaknesses in this category are related to improper management of system resources.

Affected Systems

  • appleiphone_os

    6.0

  • UnknownChrome

    ≤ 22.0.1229.92 | 22.0.1229.0 | 22.0.1229.1 | 22.0.1229.2 | 22.0.1229.3 | 22.0.1229.4 | 22.0.1229.6 | 22.0.1229.7 | 22.0.1229.8 | 22.0.1229.9 | 22.0.1229.10 | 22.0.1229.11 | 22.0.1229.12 | 22.0.1229.14 | 22.0.1229.16 | 22.0.1229.17 | 22.0.1229.18 | 22.0.1229.20 | 22.0.1229.21 | 22.0.1229.22 | 22.0.1229.23 | 22.0.1229.24 | 22.0.1229.25 | 22.0.1229.26 | 22.0.1229.27 | 22.0.1229.28 | 22.0.1229.29 | 22.0.1229.31 | 22.0.1229.32 | 22.0.1229.33 | 22.0.1229.35 | 22.0.1229.36 | 22.0.1229.37 | 22.0.1229.39 | 22.0.1229.48 | 22.0.1229.49 | 22.0.1229.50 | 22.0.1229.51 | 22.0.1229.52 | 22.0.1229.53 | 22.0.1229.54 | 22.0.1229.55 | 22.0.1229.56 | 22.0.1229.57 | 22.0.1229.58 | 22.0.1229.59 | 22.0.1229.60 | 22.0.1229.62 | 22.0.1229.63 | 22.0.1229.64 | 22.0.1229.65 | 22.0.1229.67 | 22.0.1229.76 | 22.0.1229.78 | 22.0.1229.79 | 22.0.1229.89 | 22.0.1229.91

References (13)