Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
v8 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2015-5380
The Utf8DecoderBase::WriteUtf16Slow function in unicode-decoder.cc in Google V8, as used in Node.js prior to 0.12.6, io.js prior to 1.8.3 and 2.x prior to 2.3.3, and other products, does not verify that there is memory available for a UTF-16 surrogate pair, which allows remote ma...
Google V8 -
Iojs Io.js 2.0.0
Iojs Io.js 2.3.2
Iojs Io.js 2.0.2
Iojs Io.js 2.2.0
Iojs Io.js 2.0.1
Iojs Io.js 2.1.0
Iojs Io.js 2.3.1
Iojs Io.js 2.3.0
Iojs Io.js
Iojs Io.js 2.2.1
Nodejs Node.js
7.5
CVSSv2
CVE-2020-25643
A flaw was found in the HDLC_PPP module of the Linux kernel in versions prior to 5.9-rc7. Memory corruption and a read overflow is caused by improper input validation in the ppp_cp_parse_cr function which can cause the system to crash or cause a denial of service. The highest thr...
Linux Linux Kernel 5.9.0
Linux Linux Kernel
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 8.0
Opensuse Leap 15.1
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Opensuse Leap 15.2
Netapp H410c Firmware -
Starwindsoftware Starwind Virtual San V8
7.8
CVSSv2
CVE-2014-4927
Buffer overflow in ACME micro_httpd, as used in D-Link DSL2750U and DSL2740U and NetGear WGR614 and MR-ADSL-DG834 routers allows remote malicious users to cause a denial of service (crash) via a long string in the URI in a GET request.
Netgear Wgr614 V1
Netgear Wgr614 V9
Netgear Wgr614 V3
Netgear Wgr614 V8
Netgear Wgr614 V2
Acme Micro Httpd -
Netgear Wgr614 V4
Netgear Wgr614 V7
Netgear Wgr614 V6
Netgear Mr-adsl-dg834 -
Netgear Wgr614 V5
Dlink Dsl2750u -
Dlink Dsl2740u -
1 EDB exploit
7.5
CVSSv2
CVE-2011-1193
Google V8, as used in Google Chrome prior to 10.0.648.127, allows remote malicious users to bypass the Same Origin Policy via unspecified vectors.
Google Chrome
7.5
CVSSv2
CVE-2011-1285
The regular-expression functionality in Google Chrome prior to 10.0.648.127 does not properly implement reentrancy, which allows remote malicious users to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.
Google Chrome
7.5
CVSSv2
CVE-2011-1286
Google V8, as used in Google Chrome prior to 10.0.648.127, allows remote malicious users to cause a denial of service or possibly have unspecified other impact via unknown vectors that trigger incorrect access to memory.
Google Chrome
4.3
CVSSv2
CVE-2020-16040
Insufficient data validation in V8 in Google Chrome before 87.0.4280.88 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.
Google Chrome
7 Github repositories
9.3
CVSSv2
CVE-2009-2555
Heap-based buffer overflow in src/jsregexp.cc in Google V8 prior to 1.1.10.14, as used in Google Chrome prior to 2.0.172.37, allows remote malicious users to execute arbitrary code in the Chrome sandbox via a crafted JavaScript regular expression.
Google V8
Google Chrome 0.4.154.18
Google Chrome 0.2.149.30
Google Chrome 0.2.153.1
Google Chrome 1.0.154.42
Google Chrome 1.0.154.59
Google Chrome 2.0.156.1
Google Chrome 2.0.158.0
Google Chrome 0.4.154.31
Google Chrome 0.4.154.22
Google Chrome 1.0.154.39
Google Chrome 1.0.154.48
Google Chrome 1.0.154.52
Google Chrome 1.0.154.43
Google Chrome
Google Chrome 2.0.172.31
Google Chrome 0.3.154.3
Google Chrome 0.2.149.29
Google Chrome 0.4.154.33
Google Chrome 1.0.154.36
Google Chrome 2.0.157.0
Google Chrome 2.0.157.2
6.8
CVSSv2
CVE-2021-21220
Insufficient validation of untrusted input in V8 in Google Chrome before 89.0.4389.128 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.
Google Chrome
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Fedoraproject Fedora 34
2 Github repositories
1 Article
5.8
CVSSv2
CVE-2021-38421
Fuji Electric V-Server Lite and Tellus Lite V-Simulator prior to v4.0.12.0 is vulnerable to an out-of-bounds read, which may allow an malicious user to read sensitive information from other memory locations or cause a crash.
Fujielectric V-server
Fujielectric V-simulator
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »