CVE-2014-9646 — Vulnetix

Try Vulnetix Request Demo

CVE-2014-9646 PUBLISHED CVSS 4.599999904632568 MEDIUM

Unquoted Windows search path vulnerability in the GoogleChromeDistribution::DoPostUninstallOperations function in installer/util/google_chrome_distribution.cc in the uninstall-survey feature in Google Chrome before 40.0.2214.91 allows local users to gain privileges via a Trojan horse program in the %SYSTEMDRIVE% directory, as demonstrated by program.exe, a different vulnerability than CVE-2015-1205.

EPSS 0.03% · 8.9th percentile

Risk Scores

CVSS v2.0

4.599999904632568

EPSS Score

0.03%

8.9th percentile

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a
google	chrome	0

Timeline

Jan 27, 2015 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score

References

Open in Interactive Console →