CVE-2013-6649

EPSS 0.93% · P76 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2013-6649

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Use-after-free vulnerability in the RenderSVGImage::paint function in core/rendering/svg/RenderSVGImage.cpp in Blink, as used in Google Chrome before 32.0.1700.102, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a zero-size SVG image.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Google Chrome Blink 释放后重用漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Google Chrome是美国谷歌（Google）公司开发的一款Web浏览器。Blink是美国谷歌（Google）公司和挪威欧朋（Opera Software）公司共同开发的一套浏览器排版引擎（渲染引擎）。 Google Chrome 32.0.1700.101及之前的版本中使用的Blink浏览器引擎中的core/rendering/svg/RenderSVGImage.cpp文件中的‘RenderSVGImage::paint’函数存在释放后重用漏洞。远程攻击可借助零字节的SVG图片利用该漏洞造成拒绝

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2013-6649

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2013-6649

请登录查看更多情报信息。

http://crbug.com/330420x_refsource_CONFIRM
http://googlechromereleases.blogspot.com/2014/01/stable-channel-update_27.htmlx_refsource_CONFIRM
https://src.chromium.org/viewvc/blink?revision=164536&view=revisionx_refsource_CONFIRM
http://www.debian.org/security/2014/dsa-2862vendor-advisoryx_refsource_DEBIAN
http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00008.htmlvendor-advisoryx_refsource_SUSE
https://nvd.nist.gov/vuln/detail/CVE-2013-6649

Same Patch Batch · n/a · 2014-01-28 · 13 CVEs total

CVE-2012-5192		Bitweaver‘overlay_type’参数目录遍历漏洞
CVE-2013-6838		Enghouse Interactive IVR Pro 加密问题漏洞
CVE-2013-7135		CPanel CPAN ‘Proc::Daemon’模块不安全文件权限漏洞
CVE-2014-0647		Starbucks 信任管理漏洞
CVE-2014-1604		RPLY 安全漏洞
CVE-2014-1624		python-xdg‘xdg.BaseDirectory.get_runtime_dir’函数竞争条件漏洞
CVE-2014-1638		localepurge 安全漏洞
CVE-2014-1639		syncevolution 安全漏洞
CVE-2014-1640		axiom 安全漏洞
CVE-2013-6650		Google Chrome‘StoreBuffer::ExemptPopularPages’函数内存损坏漏洞
CVE-2014-1681		Google Chrome 安全漏洞
CVE-2013-5094		McAfee Vulnerability Manager 跨站脚本漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2013-6649

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2013-6649

I. Basic Information for CVE-2013-6649

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2013-6649

III. Intelligence Information for CVE-2013-6649

Same Patch Batch · n/a · 2014-01-28 · 13 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2013-6649

Leave a comment