CyberSec.Space Logo
Back to CVE Browser

CVE-2011-3092

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0310%
EPSS Percentile28.90th
PublishedMay 16, 2012
Last ModifiedApr 29, 2026

Vulnerability Description

The regex implementation in Google V8, as used in Google Chrome before 19.0.1084.46, allows remote attackers to cause a denial of service (invalid write operation) or possibly have unspecified other impact via unknown vectors.

Affected Platforms (CPE)

πŸ“¦
Google

Chrome

<= 19.0.1084.45

References & Advisories

πŸ”— http://code.google.com/p/chromium/issues/detail?id=122337
πŸ”— http://googlechromereleases.blogspot.com/2012/05/stable-channel-update.html
πŸ”— http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00017.html
πŸ”— http://security.gentoo.org/glsa/glsa-201205-03.xml
πŸ”— http://www.securityfocus.com/bid/53540
πŸ”— http://www.securitytracker.com/id?1027067
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/75597
πŸ”— https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15610

Related Vulnerabilities

CVE-2004-076410.0

Mozilla before 1.7, Firefox before 0.9, and Thunderbird before 0.7, allow remote web sites to hijack the user interface via the "c...

CVE-2009-247110.0

The setTimeout function in Mozilla Firefox before 3.0.12 does not properly preserve object wrapping, which allows remote attackers...

CVE-2021-3397010.0

Buffer Overflow vulnerability in Qihoo 360 Chrome v13.0.2170.0 allows attacker to escalate priveleges.

CVE-2009-266510.0

The nsDocument::SetScriptGlobalObject function in content/base/src/nsDocument.cpp in Mozilla Firefox 3.5.x before 3.5.2, when cert...