Out-of-Bounds Read Vulnerability in SVG Implementation in Google Chrome

Out-of-Bounds Read Vulnerability in SVG Implementation in Google Chrome

CVE-2013-6623 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

The SVG implementation in Blink, as used in Google Chrome before 31.0.1650.48, allows remote attackers to cause a denial of service (out-of-bounds read) by leveraging the use of tree order, rather than transitive dependency order, for layout.

Learn more about our Cis Benchmark Audit For Google Chrome.