{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2013-05-21T00:00:00.000Z", "descriptions": [{"lang": "en", "value": "Multiple cross-site scripting (XSS) vulnerabilities in Google Chrome before 27.0.1453.93 allow user-assisted remote attackers to inject arbitrary web script or HTML via vectors involving a (1) drag-and-drop or (2) copy-and-paste operation."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-09-18T12:57:01.000Z", "orgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28", "shortName": "Chrome"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://code.google.com/p/chromium/issues/detail?id=171392"}, {"name": "DSA-2695", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2013/dsa-2695"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://googlechromereleases.blogspot.com/2013/05/stable-channel-release.html"}, {"name": "oval:org.mitre.oval:def:16753", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16753"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security@google.com", "ID": "CVE-2013-2849", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple cross-site scripting (XSS) vulnerabilities in Google Chrome before 27.0.1453.93 allow user-assisted remote attackers to inject arbitrary web script or HTML via vectors involving a (1) drag-and-drop or (2) copy-and-paste operation."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://code.google.com/p/chromium/issues/detail?id=171392", "refsource": "CONFIRM", "url": "https://code.google.com/p/chromium/issues/detail?id=171392"}, {"name": "DSA-2695", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2013/dsa-2695"}, {"name": "http://googlechromereleases.blogspot.com/2013/05/stable-channel-release.html", "refsource": "CONFIRM", "url": "http://googlechromereleases.blogspot.com/2013/05/stable-channel-release.html"}, {"name": "oval:org.mitre.oval:def:16753", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16753"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T15:52:20.693Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://code.google.com/p/chromium/issues/detail?id=171392"}, {"name": "DSA-2695", "tags": ["vendor-advisory", "x_refsource_DEBIAN", "x_transferred"], "url": "http://www.debian.org/security/2013/dsa-2695"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://googlechromereleases.blogspot.com/2013/05/stable-channel-release.html"}, {"name": "oval:org.mitre.oval:def:16753", "tags": ["vdb-entry", "signature", "x_refsource_OVAL", "x_transferred"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16753"}]}]}, "cveMetadata": {"assignerOrgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28", "assignerShortName": "Chrome", "cveId": "CVE-2013-2849", "datePublished": "2013-05-22T10:00:00.000Z", "dateReserved": "2013-04-11T00:00:00.000Z", "dateUpdated": "2024-08-06T15:52:20.693Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*", "matchCriteriaId": "5CAB43EE-4A88-4B1F-8167-6917FD095F81", "versionEndIncluding": "27.0.1453.91", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.0:*:*:*:*:*:*:*", "matchCriteriaId": "B61BB7C7-519D-4084-9F48-9D992A829246", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.1:*:*:*:*:*:*:*", "matchCriteriaId": "95D7F7CA-6DE0-4F03-A7AC-C99C91A57913", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.2:*:*:*:*:*:*:*", "matchCriteriaId": "77A874B4-CA16-4FEC-B67C-6707D58DF338", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.3:*:*:*:*:*:*:*", "matchCriteriaId": "18BFC6C5-455A-4F64-9BE8-8C65E7196650", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.4:*:*:*:*:*:*:*", "matchCriteriaId": "F569848F-1558-447F-8852-F240FEEFAC9E", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.5:*:*:*:*:*:*:*", "matchCriteriaId": "7AD52267-6CC1-403E-AEF8-D2B257E8013D", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.6:*:*:*:*:*:*:*", "matchCriteriaId": "DF4DB744-7805-4CEC-8720-207031051F12", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.7:*:*:*:*:*:*:*", "matchCriteriaId": "2D5B5169-6135-4B1B-99E4-31813005B601", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.8:*:*:*:*:*:*:*", "matchCriteriaId": "E33356AF-7F3F-4CC9-AC6A-09669FF1E842", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.9:*:*:*:*:*:*:*", "matchCriteriaId": "20A98AF9-A23C-4B67-A93C-7E6F39917DFD", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.10:*:*:*:*:*:*:*", "matchCriteriaId": "1F26B1CB-9B8F-4FD3-9BAC-32141EBBD766", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.11:*:*:*:*:*:*:*", "matchCriteriaId": "8005EA70-8B99-4653-9F58-D7EA3A538A47", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.12:*:*:*:*:*:*:*", "matchCriteriaId": "AF7E711E-1240-4875-B824-FBA5FAB4BBAC", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.13:*:*:*:*:*:*:*", "matchCriteriaId": "C9DFC6EF-C4F6-4861-8712-27C335DE9E11", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.15:*:*:*:*:*:*:*", "matchCriteriaId": "11667B12-9FAE-4043-B23D-983F178BFC8F", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.34:*:*:*:*:*:*:*", "matchCriteriaId": "57180BB1-D41C-42BE-B35E-532D451CC0F7", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.35:*:*:*:*:*:*:*", "matchCriteriaId": "63BEDF20-33CB-42AF-9335-9BF41B53DB9D", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.36:*:*:*:*:*:*:*", "matchCriteriaId": "80356017-C7C6-4F72-9A92-2F13C9ADE762", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.37:*:*:*:*:*:*:*", "matchCriteriaId": "513A84A5-8EA5-4095-84C1-5B55E07CE332", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.38:*:*:*:*:*:*:*", "matchCriteriaId": "268DE157-0335-404D-9568-F54D5AB1F4DD", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.39:*:*:*:*:*:*:*", "matchCriteriaId": "8CC8931C-122D-4E0C-8855-456070822EF3", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.40:*:*:*:*:*:*:*", "matchCriteriaId": "A138D90F-0954-4627-A6CF-4671AC474FF1", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.41:*:*:*:*:*:*:*", "matchCriteriaId": "2D5FE20F-29B9-4E48-88A8-E00AD790E93F", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.42:*:*:*:*:*:*:*", "matchCriteriaId": "3E19C352-0C20-4AC1-BF53-1B0A416F0FF4", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.43:*:*:*:*:*:*:*", "matchCriteriaId": "6271E601-9E4D-4765-B71D-7FA2B9FE0013", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.44:*:*:*:*:*:*:*", "matchCriteriaId": "9702130A-CB3F-433E-892B-7B4338A048B6", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.45:*:*:*:*:*:*:*", "matchCriteriaId": "129CCA51-B755-4A61-8B63-EC69AA2970F2", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.46:*:*:*:*:*:*:*", "matchCriteriaId": "D572B358-361A-49E2-B9E9-CC97F6424418", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.47:*:*:*:*:*:*:*", "matchCriteriaId": "841CA94D-859E-425A-A735-62A35B20E23F", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.49:*:*:*:*:*:*:*", "matchCriteriaId": "A9F1B5E4-BA8B-440B-B8D2-2E2093F4B32E", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.50:*:*:*:*:*:*:*", "matchCriteriaId": "3BE6989D-BE91-4C92-9734-61A7F234E9F4", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.51:*:*:*:*:*:*:*", "matchCriteriaId": "EC4481D4-4143-4BC0-983C-974695711F54", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.52:*:*:*:*:*:*:*", "matchCriteriaId": "D7A5927A-3182-4BB5-8AC2-72EC2F43027C", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.54:*:*:*:*:*:*:*", "matchCriteriaId": "2780C1B8-F4B6-4C11-974C-AB0205896782", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.55:*:*:*:*:*:*:*", "matchCriteriaId": "08808A78-646E-4D6D-BD57-5EC533D904FD", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.56:*:*:*:*:*:*:*", "matchCriteriaId": "B4F526E2-8625-4337-9855-0FB3FB135BF7", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.57:*:*:*:*:*:*:*", "matchCriteriaId": "B9AF361A-32B7-40A6-9863-793ED2C29C15", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.58:*:*:*:*:*:*:*", "matchCriteriaId": "96E9901E-F811-4736-B7C7-847584B162C5", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.59:*:*:*:*:*:*:*", "matchCriteriaId": "3D9762D5-D548-4910-B8F1-3A0E3664C6CA", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.60:*:*:*:*:*:*:*", "matchCriteriaId": "540B23F2-8434-4E40-9CBE-E8A60D7DB05D", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.61:*:*:*:*:*:*:*", "matchCriteriaId": "B1FD2F21-FB01-4D78-8C05-0BBD2D257C39", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.62:*:*:*:*:*:*:*", "matchCriteriaId": "0A8E2340-ED37-4942-B0D6-72E25AF8886C", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.63:*:*:*:*:*:*:*", "matchCriteriaId": "892CABA3-5B2C-4168-9F1D-03D58D212A0C", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.64:*:*:*:*:*:*:*", "matchCriteriaId": "95B8C085-3EDE-4363-973C-EC649E6F07EE", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.65:*:*:*:*:*:*:*", "matchCriteriaId": "6775A3FB-7B3C-4713-B1F7-82D49C8867E2", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.66:*:*:*:*:*:*:*", "matchCriteriaId": "67A6E53E-EEE8-4D16-BEE0-1549E3C4FBE7", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.67:*:*:*:*:*:*:*", "matchCriteriaId": "F8C48274-9025-4909-AA5F-2A6C90902646", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.68:*:*:*:*:*:*:*", "matchCriteriaId": "85C9EBB3-3329-43C6-998F-BAB480181BD9", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.69:*:*:*:*:*:*:*", "matchCriteriaId": "18A9D90E-1827-4F82-B2C6-214E0733B128", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.70:*:*:*:*:*:*:*", "matchCriteriaId": "3BCD6FE8-504F-4B2B-B401-91F31862063E", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.71:*:*:*:*:*:*:*", "matchCriteriaId": "AD33D555-75B1-43BC-B32E-B5D794419882", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.72:*:*:*:*:*:*:*", "matchCriteriaId": "E9F8257E-D36C-4799-BD3D-CA8AE2E7701E", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.73:*:*:*:*:*:*:*", "matchCriteriaId": "19AB2B3D-EFE4-48BA-8D70-DAC500321472", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.74:*:*:*:*:*:*:*", "matchCriteriaId": "7E40617D-2EB9-4773-A81B-5BA4F1BA6786", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.75:*:*:*:*:*:*:*", "matchCriteriaId": "B44A775E-C82A-4B5C-BA3B-20022408CF1A", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.76:*:*:*:*:*:*:*", "matchCriteriaId": "B3E21A34-4AFB-4A44-BC09-68B6672DFD93", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.77:*:*:*:*:*:*:*", "matchCriteriaId": "F0450801-F2EB-48B5-9DE4-6A0BCF7E3F17", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.78:*:*:*:*:*:*:*", "matchCriteriaId": "A50BF3E0-4AFB-43CD-A7BF-13827000D0A7", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.79:*:*:*:*:*:*:*", "matchCriteriaId": "1A5BD9A8-A717-4398-847F-4C7D71AD5588", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.80:*:*:*:*:*:*:*", "matchCriteriaId": "C24422D7-523C-4A21-9649-06BB0A1908B6", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.81:*:*:*:*:*:*:*", "matchCriteriaId": "040EF42D-185F-446C-944B-712AE2A62036", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.82:*:*:*:*:*:*:*", "matchCriteriaId": "4C139C6E-3FA7-4295-9DE3-938EDEB09D20", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.83:*:*:*:*:*:*:*", "matchCriteriaId": "A518C048-1CB5-4BB9-B2D7-85A4399E8AB6", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.84:*:*:*:*:*:*:*", "matchCriteriaId": "92874CC7-49E9-4A7F-9021-1C7ECE35B2AB", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.85:*:*:*:*:*:*:*", "matchCriteriaId": "345DA945-0490-4A5E-8E20-7FC5886AB170", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.86:*:*:*:*:*:*:*", "matchCriteriaId": "0BA7F6E3-F872-4EF4-B2E5-C1677867F166", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.87:*:*:*:*:*:*:*", "matchCriteriaId": "3383A496-84BF-427F-88A0-1620A36E9177", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.88:*:*:*:*:*:*:*", "matchCriteriaId": "482C95EF-FA97-4709-9FB4-B7AB3437C69C", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.89:*:*:*:*:*:*:*", "matchCriteriaId": "30D5B77B-5860-4855-B416-E84E43E267EE", "vulnerable": true}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.90:*:*:*:*:*:*:*", "matchCriteriaId": "E157716D-4FC2-4F3A-B5ED-96C098408D1E", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Multiple cross-site scripting (XSS) vulnerabilities in Google Chrome before 27.0.1453.93 allow user-assisted remote attackers to inject arbitrary web script or HTML via vectors involving a (1) drag-and-drop or (2) copy-and-paste operation."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades de ejecuci\u00f3n de secuencias de comandos en sitios cruzados (XSS) en Google Chrome anterior a v27.0.1453.93, permite a atacantes remotos inyectar secuencias de comandos web o HTML a trav\u00e9s del par\u00e1metro a (1) drag-and-drop o (2)copy-and-paste operation."}], "id": "CVE-2013-2849", "lastModified": "2026-04-29T01:13:23.040", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2013-05-22T13:29:56.157", "references": [{"source": "chrome-cve-admin@google.com", "url": "http://googlechromereleases.blogspot.com/2013/05/stable-channel-release.html"}, {"source": "chrome-cve-admin@google.com", "url": "http://www.debian.org/security/2013/dsa-2695"}, {"source": "chrome-cve-admin@google.com", "url": "https://code.google.com/p/chromium/issues/detail?id=171392"}, {"source": "chrome-cve-admin@google.com", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16753"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://googlechromereleases.blogspot.com/2013/05/stable-channel-release.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.debian.org/security/2013/dsa-2695"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://code.google.com/p/chromium/issues/detail?id=171392"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16753"}], "sourceIdentifier": "chrome-cve-admin@google.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{}