CVE-2011-2170: Input Validation
First published: Tue May 24 2011(Updated: )
Google Chrome OS before R12 0.12.433.38 Beta, when Guest mode is enabled, does not prevent changes on the about:flags page, which has unspecified impact and local attack vectors.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Chrome OS | <=0.12.433.35 | |
| Chrome OS | =0.9.126.0 | |
| Chrome OS | =0.10.142.3 | |
| Chrome OS | =0.10.146.1 | |
| Chrome OS | =0.10.156.1 | |
| Chrome OS | =0.10.156.4 | |
| Chrome OS | =0.10.156.18 | |
| Chrome OS | =0.10.156.20 | |
| Chrome OS | =0.10.156.30 | |
| Chrome OS | =0.10.156.34 | |
| Chrome OS | =0.10.156.36 | |
| Chrome OS | =0.10.156.46 | |
| Chrome OS | =0.10.156.50 | |
| Chrome OS | =0.10.156.54 | |
| Chrome OS | =0.11.227.0 | |
| Chrome OS | =0.11.257.3 | |
| Chrome OS | =0.11.257.14 | |
| Chrome OS | =0.11.257.18 | |
| Chrome OS | =0.11.257.32 | |
| Chrome OS | =0.11.257.39 | |
| Chrome OS | =0.11.257.44 | |
| Chrome OS | =0.11.257.91 | |
| Chrome OS | =0.12.362.2 | |
| Chrome OS | =0.12.397.0 | |
| Chrome OS | =0.12.433.9 | |
| Chrome OS | =0.12.433.14 | |
| Chrome OS | =0.12.433.22 | |
| Chrome OS | =0.12.433.28 | |
| Chrome OS | =8.0.552.342 | |
| Chrome OS | =8.0.552.343 | |
| Chrome OS | =8.0.552.344 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2011-2170?
CVE-2011-2170 has an unspecified impact that could lead to local attack vectors due to guest mode vulnerabilities.
How do I fix CVE-2011-2170?
To mitigate CVE-2011-2170, update your Google Chrome OS to a version that is R12 0.12.433.38 Beta or later.
What versions of Google Chrome OS are affected by CVE-2011-2170?
CVE-2011-2170 affects multiple versions of Google Chrome OS prior to R12 0.12.433.38.
What is the nature of the vulnerability in CVE-2011-2170?
The vulnerability in CVE-2011-2170 allows changes on the about:flags page in Guest mode.
Can CVE-2011-2170 affect system security?
Yes, CVE-2011-2170 can potentially compromise system security by allowing unauthorized changes.
- agent/type
- agent/softwarecombine
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/first-publish-date
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/google
- canonical/chrome os
- version/chrome os/0.12.433.35
- version/chrome os/0.9.126.0
- version/chrome os/0.10.142.3
- version/chrome os/0.10.146.1
- version/chrome os/0.10.156.1
- version/chrome os/0.10.156.4
- version/chrome os/0.10.156.18
- version/chrome os/0.10.156.20
- version/chrome os/0.10.156.30
- version/chrome os/0.10.156.34
- version/chrome os/0.10.156.36
- version/chrome os/0.10.156.46
- version/chrome os/0.10.156.50
- version/chrome os/0.10.156.54
- version/chrome os/0.11.227.0
- version/chrome os/0.11.257.3
- version/chrome os/0.11.257.14
- version/chrome os/0.11.257.18
- version/chrome os/0.11.257.32
- version/chrome os/0.11.257.39
- version/chrome os/0.11.257.44
- version/chrome os/0.11.257.91
- version/chrome os/0.12.362.2
- version/chrome os/0.12.397.0
- version/chrome os/0.12.433.9
- version/chrome os/0.12.433.14
- version/chrome os/0.12.433.22
- version/chrome os/0.12.433.28
- version/chrome os/8.0.552.342
- version/chrome os/8.0.552.343
- version/chrome os/8.0.552.344