Search for vulnerabilities
Vulnerability details: VCID-ht3w-v1ku-aaaq
Vulnerability ID VCID-ht3w-v1ku-aaaq
Aliases CVE-2011-3892
Summary Double free vulnerability in the Theora decoder in Google Chrome before 15.0.874.120 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted stream.
Status Published
Exploitability 0.5
Weighted Severity 6.8
Risk 3.4
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-415 Double Free
System Score Found at
epss 0.01751 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.01751 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.01751 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.01751 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.01751 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.01751 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.01751 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.01751 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.01751 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.01751 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.01751 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.01751 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.01751 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.01751 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.01751 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.01751 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.01751 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.01751 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.01751 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.01751 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.01751 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.01751 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.01751 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.01751 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.01751 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.01751 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.01751 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.01751 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02107 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02155 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02198 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02198 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02390 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02390 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02390 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02390 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02390 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02390 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02390 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02390 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02390 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02390 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02390 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02390 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02390 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02390 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02733 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
epss 0.02733 https://api.first.org/data/v1/epss?cve=CVE-2011-3892
cvssv2 7.5 https://nvd.nist.gov/vuln/detail/CVE-2011-3892
Reference id Reference type URL
http://code.google.com/p/chromium/issues/detail?id=100465
http://googlechromereleases.blogspot.com/2011/11/stable-channel-update.html
https://api.first.org/data/v1/epss?cve=CVE-2011-3892
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3892
http://secunia.com/advisories/46933
http://secunia.com/advisories/49089
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14484
http://www.debian.org/security/2012/dsa-2471
http://www.mandriva.com/security/advisories?name=MDVSA-2012:075
http://www.mandriva.com/security/advisories?name=MDVSA-2012:076
654534 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=654534
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*
CVE-2011-3892 https://nvd.nist.gov/vuln/detail/CVE-2011-3892
GLSA-201111-05 https://security.gentoo.org/glsa/201111-05
No exploits are available.
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2011-3892
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.80893
EPSS Score 0.01751
Published At March 28, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
There are no relevant records.