6.8
CVSSv2

CVE-2016-5219

Published: 19/01/2017 Updated: 05/01/2018
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
CVSS v3 Base Score: 6.3 | Impact Score: 3.4 | Exploitability Score: 2.8
VMScore: 605
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Vulnerability Summary

A heap use after free in V8 in Google Chrome before 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Affected Products

Vendor Product Versions
GoogleChrome54.0.2840.99

Vendor Advisories

A heap use after free in V8 in Google Chrome prior to 550288375 for Mac, Windows and Linux, and 550288384 for Android allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page ...
An use after free flaw was found in the V8 component of the Chromium browser ...
Synopsis Important: chromium-browser security update Type/Severity Security Advisory: Important Topic An update for chromium-browser is now available for Red Hat Enterprise Linux 6 SupplementaryRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability S ...
Several security issues were fixed in Oxide ...

Recent Articles

Google Fixes 12 High-Severity Flaws In Chrome Browser
Threatpost • Tom Spring • 02 Dec 2016

Google is urging Windows, Mac and Linux users to update their Chrome browsers to fix multiple vulnerabilities that could allow malicious third parties to take control of targeted systems.
Released Thursday, Chrome version 55.0.2883.75 for Windows, Mac, and Linux fixes those security issues. It also introduces a number of new features to the browser to enhance the way it handles panning gestures and to support CSS automatic hyphenation.
The United States Computer Emergency Readiness ...