Published: 28/08/2018 Updated: 07/11/2023

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 605

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Type confusion in WebAssembly in V8 in Google Chrome before 63.0.3239.84 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.

Vulnerable Product	Search on Vulmon	Subscribe to Product
redhat enterprise linux desktop 6.0
redhat enterprise linux server 6.0
redhat enterprise linux workstation 6.0
debian debian linux 9.0
google chrome

Synopsis Critical: chromium-browser security update Type/Severity Security Advisory: Critical Topic An update for chromium-browser is now available for Red Hat Enterprise Linux 6 SupplementaryRed Hat Product Security has rated this update as having a security impact of Critical A Common Vulnerability Scor ...

Several vulnerabilities have been discovered in the chromium web browser CVE-2017-15407 Ned Williamson discovered an out-of-bounds write issue CVE-2017-15408 Ke Liu discovered a heap overflow issue in the pdfium library CVE-2017-15409 An out-of-bounds write issue was discovered in the skia library CVE-2017-15410 Luat Nguyen dis ...

Type confusion in WebAssembly in V8 in Google Chrome prior to 630323984 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page ...

A type confusion has been found in the WebAssembly component of the Chromium browser before 630323984 ...

CWE-704 https://access.redhat.com/errata/RHSA-2017:3401 https://security.gentoo.org/glsa/201801-03 https://crbug.com/766666 https://chromereleases.googleblog.com/2017/12/stable-channel-update-for-desktop.html https://www.debian.org/security/2017/dsa-4064 https://access.redhat.com/errata/RHSA-2017:3401 https://nvd.nist.gov https://www.debian.org/security/./dsa-4064

CVE-2017-15413

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect