CVE-2011-2337
CRITICALBlink < M12 - Incorrect Type Conversion in strlen Return Value
Title source: llmDescription
A wrong type is used for a return value from strlen in WebKit in Google Chrome before Blink M12 on 64-bit platforms.
References (3)
Core 3
Core References
Issue Tracking x_refsource_misc
https://bugs.chromium.org/p/chromium/issues/detail?id=82152
Various Sources x_refsource_misc
http://trac.webkit.org/changeset/86106
Various Sources x_refsource_misc
http://trac.webkit.org/changeset/86173
Scores
CVSS v3
9.8
EPSS
0.0081
EPSS Percentile
51.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-704
Status
published
Products (1)
google/blink
< m12
Published
Nov 07, 2019
Tracked Since
Feb 18, 2026