{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2012-06-26T00:00:00", "descriptions": [{"lang": "en", "value": "Google Chrome before 20.0.1132.43 allows remote attackers to obtain potentially sensitive information from a fragment identifier by leveraging access to an IFRAME element associated with a different domain."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-09-18T12:57:01", "orgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28", "shortName": "Chrome"}, "references": [{"name": "openSUSE-SU-2012:0813", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "https://hermes.opensuse.org/messages/15075728"}, {"name": "APPLE-SA-2012-09-19-1", "tags": ["vendor-advisory", "x_refsource_APPLE"], "url": "http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://support.apple.com/kb/HT5503"}, {"name": "oval:org.mitre.oval:def:15662", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15662"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://googlechromereleases.blogspot.com/2012/06/stable-channel-update_26.html"}, {"name": "APPLE-SA-2012-07-25-1", "tags": ["vendor-advisory", "x_refsource_APPLE"], "url": "http://lists.apple.com/archives/security-announce/2012/Jul/msg00000.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://support.apple.com/kb/HT5400"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://code.google.com/p/chromium/issues/detail?id=118633"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security@google.com", "ID": "CVE-2012-2815", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Google Chrome before 20.0.1132.43 allows remote attackers to obtain potentially sensitive information from a fragment identifier by leveraging access to an IFRAME element associated with a different domain."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "openSUSE-SU-2012:0813", "refsource": "SUSE", "url": "https://hermes.opensuse.org/messages/15075728"}, {"name": "APPLE-SA-2012-09-19-1", "refsource": "APPLE", "url": "http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html"}, {"name": "http://support.apple.com/kb/HT5503", "refsource": "CONFIRM", "url": "http://support.apple.com/kb/HT5503"}, {"name": "oval:org.mitre.oval:def:15662", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15662"}, {"name": "http://googlechromereleases.blogspot.com/2012/06/stable-channel-update_26.html", "refsource": "CONFIRM", "url": "http://googlechromereleases.blogspot.com/2012/06/stable-channel-update_26.html"}, {"name": "APPLE-SA-2012-07-25-1", "refsource": "APPLE", "url": "http://lists.apple.com/archives/security-announce/2012/Jul/msg00000.html"}, {"name": "http://support.apple.com/kb/HT5400", "refsource": "CONFIRM", "url": "http://support.apple.com/kb/HT5400"}, {"name": "http://code.google.com/p/chromium/issues/detail?id=118633", "refsource": "CONFIRM", "url": "http://code.google.com/p/chromium/issues/detail?id=118633"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T19:42:32.671Z"}, "title": "CVE Program Container", "references": [{"name": "openSUSE-SU-2012:0813", "tags": ["vendor-advisory", "x_refsource_SUSE", "x_transferred"], "url": "https://hermes.opensuse.org/messages/15075728"}, {"name": "APPLE-SA-2012-09-19-1", "tags": ["vendor-advisory", "x_refsource_APPLE", "x_transferred"], "url": "http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://support.apple.com/kb/HT5503"}, {"name": "oval:org.mitre.oval:def:15662", "tags": ["vdb-entry", "signature", "x_refsource_OVAL", "x_transferred"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15662"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://googlechromereleases.blogspot.com/2012/06/stable-channel-update_26.html"}, {"name": "APPLE-SA-2012-07-25-1", "tags": ["vendor-advisory", "x_refsource_APPLE", "x_transferred"], "url": "http://lists.apple.com/archives/security-announce/2012/Jul/msg00000.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://support.apple.com/kb/HT5400"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://code.google.com/p/chromium/issues/detail?id=118633"}]}]}, "cveMetadata": {"assignerOrgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28", "assignerShortName": "Chrome", "cveId": "CVE-2012-2815", "datePublished": "2012-06-27T10:00:00", "dateReserved": "2012-05-19T00:00:00", "dateUpdated": "2024-08-06T19:42:32.671Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*", "matchCriteriaId": "0C5E7E3F-3DF6-466D-825E-7484B7F0ED0E", "versionEndIncluding": "20.0.1132.42", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.0:*:*:*:*:*:*:*", "matchCriteriaId": "5559EFC8-18F4-4E5A-9198-E86D0A2D95DE", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.1:*:*:*:*:*:*:*", "matchCriteriaId": "F2D24BBC-FED3-4744-AC61-CB11531E9D48", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.2:*:*:*:*:*:*:*", "matchCriteriaId": "B4C0FF1E-CE10-45EC-B35C-0D5623697998", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.3:*:*:*:*:*:*:*", "matchCriteriaId": "74ACE4E5-56D6-4EDC-8E92-9937A87D28CE", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.4:*:*:*:*:*:*:*", "matchCriteriaId": "EC1BC2A3-CE9B-4D6F-B9D5-D408B714468B", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.5:*:*:*:*:*:*:*", "matchCriteriaId": "0F2A3129-C209-4E67-AD08-2DA3D289FB37", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.6:*:*:*:*:*:*:*", "matchCriteriaId": "D3E3C624-A446-44CC-8141-410E521A21AE", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.7:*:*:*:*:*:*:*", "matchCriteriaId": "8BE627E1-DFCB-40D0-A84C-16AE80C73E52", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.8:*:*:*:*:*:*:*", "matchCriteriaId": "D6694631-7054-48AF-B046-32694BFA5DCC", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.9:*:*:*:*:*:*:*", "matchCriteriaId": "A09C563A-5541-4799-9F6E-B20ABD211185", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.10:*:*:*:*:*:*:*", "matchCriteriaId": "FCCF11B8-1997-4930-AEF2-D008B55D3CB3", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.11:*:*:*:*:*:*:*", "matchCriteriaId": "2BB5CC75-658A-455A-9BB2-D702523E66FC", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.12:*:*:*:*:*:*:*", "matchCriteriaId": "13341A40-4EDF-4E15-A693-95F7DEDA9803", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.13:*:*:*:*:*:*:*", "matchCriteriaId": "55EA4229-47F8-435E-8475-8E79D5AD7340", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.14:*:*:*:*:*:*:*", "matchCriteriaId": "32C0848C-4A1A-4068-8384-F7FC9314B096", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.15:*:*:*:*:*:*:*", "matchCriteriaId": "A6A5FC9C-F50E-48BA-88F3-9CCE0EF23F44", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.16:*:*:*:*:*:*:*", "matchCriteriaId": "08192C42-C286-4694-B45E-25FC177FF8FD", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.17:*:*:*:*:*:*:*", "matchCriteriaId": "D6CEE0F7-7795-4FB0-BE4E-11795661CE66", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.18:*:*:*:*:*:*:*", "matchCriteriaId": "A0B04B9A-302F-48BB-BCBC-4B2302F73F67", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.19:*:*:*:*:*:*:*", "matchCriteriaId": "A7C41D41-F357-4AA4-AF10-1740E0F65A61", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.20:*:*:*:*:*:*:*", "matchCriteriaId": "BEE569D4-8DC2-44BD-9FEC-4C8E18C1E10F", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.21:*:*:*:*:*:*:*", "matchCriteriaId": "71E32C87-CABE-464D-85AE-E5A53E954317", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.22:*:*:*:*:*:*:*", "matchCriteriaId": "E7004E55-4987-4ADF-B99E-8EE85AC2E626", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.23:*:*:*:*:*:*:*", "matchCriteriaId": "EBE6A4F6-3903-452C-999A-A26629CC6DEB", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.24:*:*:*:*:*:*:*", "matchCriteriaId": "757DFB66-2F5F-421E-8014-8CE3E0E83F4D", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.25:*:*:*:*:*:*:*", "matchCriteriaId": "85675AB6-CA91-462F-903A-7F9A2400A4E6", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.26:*:*:*:*:*:*:*", "matchCriteriaId": "B78196D7-8D7F-483B-A587-DCD94FE28E22", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.27:*:*:*:*:*:*:*", "matchCriteriaId": "1DC91ABB-129A-467E-9900-D84886BE068E", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.28:*:*:*:*:*:*:*", "matchCriteriaId": "0CD4E658-4860-425F-A890-B234791BD2D2", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.29:*:*:*:*:*:*:*", "matchCriteriaId": "06FF0461-D045-4BC5-B20D-28C7D3A12BE2", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.30:*:*:*:*:*:*:*", "matchCriteriaId": "5CB5D96D-9642-4B48-98A2-713E05977948", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.31:*:*:*:*:*:*:*", "matchCriteriaId": "7EDE7D7B-490C-490D-9F2A-00DF72598ACF", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.32:*:*:*:*:*:*:*", "matchCriteriaId": "2485E36F-E014-45F9-80D2-79CC560DD68D", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.33:*:*:*:*:*:*:*", "matchCriteriaId": "85809C6A-B4C9-4B57-A295-2805A789F495", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.34:*:*:*:*:*:*:*", "matchCriteriaId": "E1DFFBD0-5E00-453B-B33A-A94B43278F33", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.35:*:*:*:*:*:*:*", "matchCriteriaId": "6A04F552-DB31-4F27-A1ED-38A1D857E6CE", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.36:*:*:*:*:*:*:*", "matchCriteriaId": "C49C1C7C-D235-45F2-B54A-E82DCF29E53A", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.37:*:*:*:*:*:*:*", "matchCriteriaId": "1B0FBAF0-31DE-42DA-B9A0-9E06DB4C59ED", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.38:*:*:*:*:*:*:*", "matchCriteriaId": "56C38A9D-20A6-4AE9-93DA-00D69130907D", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.39:*:*:*:*:*:*:*", "matchCriteriaId": "6529FF3F-6316-4093-8F93-1977809C6151", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.40:*:*:*:*:*:*:*", "matchCriteriaId": "18A1B84B-B5AC-4E4A-83C6-601C3D359527", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:20.0.1132.41:*:*:*:*:*:*:*", "matchCriteriaId": "5F1B10F5-D24A-4614-B9D4-927380E02011", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Google Chrome before 20.0.1132.43 allows remote attackers to obtain potentially sensitive information from a fragment identifier by leveraging access to an IFRAME element associated with a different domain."}, {"lang": "es", "value": "Google Chrome anterior a v20.0.1132.43 permite a atacantes remotos obtener informaci\u00f3n potencialmente sensible a partir de un identificador de fragmento, aprovechando el acceso a un elemento IFRAME asociado a un dominio diferente."}], "id": "CVE-2012-2815", "lastModified": "2023-11-07T02:10:53.927", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2012-06-27T10:18:38.400", "references": [{"source": "chrome-cve-admin@google.com", "url": "http://code.google.com/p/chromium/issues/detail?id=118633"}, {"source": "chrome-cve-admin@google.com", "url": "http://googlechromereleases.blogspot.com/2012/06/stable-channel-update_26.html"}, {"source": "chrome-cve-admin@google.com", "url": "http://lists.apple.com/archives/security-announce/2012/Jul/msg00000.html"}, {"source": "chrome-cve-admin@google.com", "url": "http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html"}, {"source": "chrome-cve-admin@google.com", "url": "http://support.apple.com/kb/HT5400"}, {"source": "chrome-cve-admin@google.com", "url": "http://support.apple.com/kb/HT5503"}, {"source": "chrome-cve-admin@google.com", "url": "https://hermes.opensuse.org/messages/15075728"}, {"source": "chrome-cve-admin@google.com", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15662"}], "sourceIdentifier": "chrome-cve-admin@google.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-200"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}