CVE-2011-3022
Google Chrome < 17.0.963.56 - Cleartext Transmission of Sensitive Information via Translation Manager
Title source: llmDescription
translate/translate_manager.cc in Google Chrome before 17.0.963.56 and 19.x before 19.0.1036.7 uses an HTTP session to exchange data for translation, which allows remote attackers to obtain sensitive information by sniffing the network.
References (6)
Core 6
Core References
Issue Tracking, Patch, Vendor Advisory x_refsource_confirm
http://src.chromium.org/viewvc/chrome?view=rev&revision=120113
Broken Link x_refsource_confirm
http://code.google.com/p/chromium/issues/detail?id=112236
Release Notes, Vendor Advisory x_refsource_confirm
http://googlechromereleases.blogspot.com/2012/02/chrome-stable-update.html
Not Applicable third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/48016
Release Notes, Vendor Advisory x_refsource_confirm
http://googlechromereleases.blogspot.com/2012/02/dev-channel-update_10.html
Third Party Advisory vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15025
Scores
EPSS
0.0077
EPSS Percentile
50.8%
Details
CWE
CWE-319
Status
published
Products (14)
google/chrome
19.0.1028.0
google/chrome
19.0.1029.0
google/chrome
19.0.1030.0
google/chrome
19.0.1031.0
google/chrome
19.0.1032.0
google/chrome
19.0.1033.0
google/chrome
19.0.1034.0
google/chrome
19.0.1035.0
google/chrome
19.0.1036.0
google/chrome
19.0.1036.2
... and 4 more
Published
Feb 16, 2012
Tracked Since
Feb 18, 2026