CVE-2010-1851
Severity CVSS v4.0:
Pending analysis
Type:
CWE-200
Information Leak / Disclosure
Publication date:
07/05/2010
Last modified:
11/04/2025
Description
Google Chrome, when the Invisible Hand extension is enabled, uses cookies during background HTTP requests in a possibly unexpected manner, which might allow remote web servers to identify specific persons and their product searches via HTTP request logging, related to a "cross-site data leakage" issue.
Impact
Base Score 2.0
4.30
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:google:chrome:0.1.38.1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:google:chrome:0.1.38.2:*:*:*:*:*:*:* | ||
| cpe:2.3:a:google:chrome:0.1.38.4:*:*:*:*:*:*:* | ||
| cpe:2.3:a:google:chrome:0.1.40.1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:google:chrome:0.1.42.2:*:*:*:*:*:*:* | ||
| cpe:2.3:a:google:chrome:0.1.42.3:*:*:*:*:*:*:* | ||
| cpe:2.3:a:google:chrome:1.0.154.53:*:*:*:*:*:*:* | ||
| cpe:2.3:a:google:chrome:1.0.154.59:*:*:*:*:*:*:* | ||
| cpe:2.3:a:google:chrome:1.0.154.64:*:*:*:*:*:*:* | ||
| cpe:2.3:a:google:chrome:1.0.154.65:*:*:*:*:*:*:* | ||
| cpe:2.3:a:google:chrome:2.0.169.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:google:chrome:2.0.169.1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:google:chrome:2.0.170.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:google:chrome:2.0.172.2:*:*:*:*:*:*:* | ||
| cpe:2.3:a:google:chrome:2.0.172.8:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page