CVE-2011-2170
Severity CVSS v4.0:
Pending analysis
Type:
CWE-20
Input Validation
Publication date:
24/05/2011
Last modified:
11/04/2025
Description
Google Chrome OS before R12 0.12.433.38 Beta, when Guest mode is enabled, does not prevent changes on the about:flags page, which has unspecified impact and local attack vectors.
Impact
Base Score 2.0
4.40
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:google:chrome_os:*:*:*:*:*:*:*:* | 0.12.433.35 (including) | |
| cpe:2.3:o:google:chrome_os:0.9.126.0:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:chrome_os:0.10.142.3:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:chrome_os:0.10.146.1:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:chrome_os:0.10.156.1:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:chrome_os:0.10.156.4:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:chrome_os:0.10.156.18:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:chrome_os:0.10.156.20:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:chrome_os:0.10.156.30:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:chrome_os:0.10.156.34:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:chrome_os:0.10.156.36:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:chrome_os:0.10.156.46:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:chrome_os:0.10.156.50:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:chrome_os:0.10.156.54:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:chrome_os:0.11.227.0:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page