CVE-2013-0842
UnknownEPSS 0.97%
Last modified
CVE-2013-0842 is a vulnerability of currently unknown severity. Google Chrome before 24.0.1312.56 does not properly handle %00 characters in pathnames, which has unspecified impact and attack vectors.. EPSS estimates a 0.97% chance of exploitation in the next 30 days.
Description
Google Chrome before 24.0.1312.56 does not properly handle %00 characters in pathnames, which has unspecified impact and attack vectors.
Metrics
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Chrome | <= 24.0.1312.55 | |
| Chrome | 24.0.1272.0 | |
| Chrome | 24.0.1272.1 | |
| Chrome | 24.0.1273.0 | |
| Chrome | 24.0.1274.0 | |
| Chrome | 24.0.1275.0 | |
| Chrome | 24.0.1276.0 | |
| Chrome | 24.0.1276.1 | |
| Chrome | 24.0.1277.0 | |
| Chrome | 24.0.1278.0 | |
| Chrome | 24.0.1279.0 | |
| Chrome | 24.0.1280.0 | |
| Chrome | 24.0.1281.0 | |
| Chrome | 24.0.1281.1 | |
| Chrome | 24.0.1281.2 | |
| Chrome | 24.0.1281.3 | |
| Chrome | 24.0.1282.0 | |
| Chrome | 24.0.1283.0 | |
| Chrome | 24.0.1284.0 | |
| Chrome | 24.0.1284.1 | |
| Chrome | 24.0.1284.2 | |
| Chrome | 24.0.1285.0 | |
| Chrome | 24.0.1285.1 | |
| Chrome | 24.0.1285.2 | |
| Chrome | 24.0.1286.0 | |
| Chrome | 24.0.1286.1 | |
| Chrome | 24.0.1287.0 | |
| Chrome | 24.0.1287.1 | |
| Chrome | 24.0.1288.0 | |
| Chrome | 24.0.1288.1 | |
| Chrome | 24.0.1289.0 | |
| Chrome | 24.0.1289.1 | |
| Chrome | 24.0.1290.0 | |
| Chrome | 24.0.1291.0 | |
| Chrome | 24.0.1292.0 | |
| Chrome | 24.0.1293.0 | |
| Chrome | 24.0.1294.0 | |
| Chrome | 24.0.1295.0 | |
| Chrome | 24.0.1296.0 | |
| Chrome | 24.0.1297.0 | |
| Chrome | 24.0.1298.0 | |
| Chrome | 24.0.1299.0 | |
| Chrome | 24.0.1300.0 | |
| Chrome | 24.0.1301.0 | |
| Chrome | 24.0.1301.2 | |
| Chrome | 24.0.1302.0 | |
| Chrome | 24.0.1303.0 | |
| Chrome | 24.0.1304.0 | |
| Chrome | 24.0.1304.1 | |
| Chrome | 24.0.1305.0 |
Showing 50 of 116 affected configurations. See NVD for the full list.
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2013-0842?
Google Chrome before 24.0.1312.56 does not properly handle %00 characters in pathnames, which has unspecified impact and attack vectors.
How severe is CVE-2013-0842?
Severity scoring for CVE-2013-0842 is pending analysis. The EPSS model estimates a 0.97% probability of exploitation in the next 30 days.
How do I fix CVE-2013-0842?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.
Are you affected by CVE-2013-0842?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST