Strix
26.1K

CVE-2011-3112

UnknownEPSS 1.44%

Last modified

CVE-2011-3112 is a vulnerability of currently unknown severity. Use-after-free vulnerability in the PDF functionality in Google Chrome before 19.0.1084.52 allows remote attackers to cause a denial of service or possibly have unspecified other impact via an invalid encrypted document.. EPSS estimates a 1.44% chance of exploitation in the next 30 days.

Description

Use-after-free vulnerability in the PDF functionality in Google Chrome before 19.0.1084.52 allows remote attackers to cause a denial of service or possibly have unspecified other impact via an invalid encrypted document.

Metrics

EPSS Probability
1.44%

69.7th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
GoogleChrome<= 19.0.1084.51
GoogleChrome19.0.1028.0
GoogleChrome19.0.1029.0
GoogleChrome19.0.1030.0
GoogleChrome19.0.1031.0
GoogleChrome19.0.1032.0
GoogleChrome19.0.1033.0
GoogleChrome19.0.1034.0
GoogleChrome19.0.1035.0
GoogleChrome19.0.1036.0
GoogleChrome19.0.1036.2
GoogleChrome19.0.1036.3
GoogleChrome19.0.1036.4
GoogleChrome19.0.1036.6
GoogleChrome19.0.1036.7
GoogleChrome19.0.1037.0
GoogleChrome19.0.1038.0
GoogleChrome19.0.1039.0
GoogleChrome19.0.1040.0
GoogleChrome19.0.1041.0
GoogleChrome19.0.1042.0
GoogleChrome19.0.1043.0
GoogleChrome19.0.1044.0
GoogleChrome19.0.1045.0
GoogleChrome19.0.1046.0
GoogleChrome19.0.1047.0
GoogleChrome19.0.1048.0
GoogleChrome19.0.1049.0
GoogleChrome19.0.1049.1
GoogleChrome19.0.1049.2
GoogleChrome19.0.1049.3
GoogleChrome19.0.1050.0
GoogleChrome19.0.1051.0
GoogleChrome19.0.1052.0
GoogleChrome19.0.1053.0
GoogleChrome19.0.1054.0
GoogleChrome19.0.1055.0
GoogleChrome19.0.1055.1
GoogleChrome19.0.1055.2
GoogleChrome19.0.1055.3
GoogleChrome19.0.1056.0
GoogleChrome19.0.1056.1
GoogleChrome19.0.1057.0
GoogleChrome19.0.1057.1
GoogleChrome19.0.1057.3
GoogleChrome19.0.1058.0
GoogleChrome19.0.1058.1
GoogleChrome19.0.1059.0
GoogleChrome19.0.1060.0
GoogleChrome19.0.1060.1

Showing 50 of 132 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2011-3112?
Use-after-free vulnerability in the PDF functionality in Google Chrome before 19.0.1084.52 allows remote attackers to cause a denial of service or possibly have unspecified other impact via an invalid encrypted document.
How severe is CVE-2011-3112?
Severity scoring for CVE-2011-3112 is pending analysis. The EPSS model estimates a 1.44% probability of exploitation in the next 30 days.
How do I fix CVE-2011-3112?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2011-3112?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST