VYPR
← All advisories
Unrated severityNVD Advisory· Published Feb 24, 2014· Updated Apr 29, 2026

CVE-2013-6654

CVE-2013-6654

Description

In Google Chrome before 33.0.1750.117, SVGAnimateElement::calculateAnimatedValue mishandles unexpected data types, leading to a denial-of-service via incorrect cast.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

In Google Chrome before 33.0.1750.117, SVGAnimateElement::calculateAnimatedValue mishandles unexpected data types, leading to a denial-of-service via incorrect cast.

Vulnerability

The vulnerability resides in the SVGAnimateElement::calculateAnimatedValue function in core/svg/SVGAnimateElement.cpp within Blink, the rendering engine used in Google Chrome. It fails to properly handle unexpected data types when processing SVG animation elements. This affects Google Chrome versions prior to 33.0.1750.117.

Exploitation

An attacker can exploit this remotely by crafting a malicious SVG file containing animation elements with unexpected data types. No authentication or special privileges are required; the victim only needs to visit a page hosting the crafted SVG, which can be delivered via a compromised website or a crafted email link.

Impact

Successful exploitation results in a denial of service due to an incorrect cast operation, likely causing the browser to crash. The description also notes the potential for unspecified other impact, but no further details are available.

Mitigation

The issue was fixed in Blink revision 165009 [1], which corresponds to Chrome version 33.0.1750.117 and later. Users should update their Chrome browser to this version or newer. No workarounds are documented.

References
  1. src.chromium.org SVN

AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

99
  • Google/Chrome98 versions
    cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*+ 97 more
    • cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*range: <=33.0.1750.116
    • cpe:2.3:a:google:chrome:33.0.1750.0:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.1:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.10:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.104:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.106:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.107:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.108:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.109:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.11:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.110:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.111:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.112:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.113:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.115:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.12:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.13:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.14:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.15:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.16:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.18:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.19:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.2:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.20:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.21:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.22:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.23:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.24:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.25:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.26:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.27:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.28:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.29:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.3:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.30:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.31:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.34:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.35:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.36:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.37:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.38:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.39:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.4:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.40:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.41:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.42:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.43:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.44:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.45:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.46:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.47:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.48:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.49:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.5:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.50:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.51:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.52:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.53:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.54:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.55:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.56:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.57:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.58:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.59:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.6:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.60:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.61:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.62:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.63:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.64:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.65:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.66:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.67:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.68:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.69:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.7:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.70:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.71:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.73:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.74:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.75:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.76:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.77:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.79:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.8:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.80:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.81:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.82:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.83:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.85:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.88:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.89:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.9:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.90:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.91:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.92:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:33.0.1750.93:*:*:*:*:*:*:*
    • (no CPE)range: <33.0.1750.117
  • osv-coords
    pkg:rpm/opensuse/chromium&distro=openSUSE%20Tumbleweed
    Range: < 55.0.2883.75-3.1

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

5

News mentions

0

No linked articles in our index yet.