Published: 09/01/2019 Updated: 07/11/2023

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 606

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

A Javascript reentrancy issues that caused a use-after-free in V8 in Google Chrome before 69.0.3497.81 allowed a remote malicious user to execute arbitrary code inside a sandbox via a crafted HTML page.

Vulnerable Product	Search on Vulmon	Subscribe to Product
google chrome
debian debian linux 9.0
redhat enterprise linux desktop 6.0
redhat enterprise linux server 6.0
redhat enterprise linux workstation 6.0

Synopsis Important: chromium-browser security update Type/Severity Security Advisory: Important Topic An update for chromium-browser is now available for Red Hat Enterprise Linux 6 SupplementaryRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability S ...

Several vulnerabilities have been discovered in the chromium web browser CVE-2018-16065 Brendon Tiszka discovered an out-of-bounds write issue in the v8 javascript library CVE-2018-16066 cloudfuzzer discovered an out-of-bounds read issue in blink/webkit CVE-2018-16067 Zhe Jin discovered an out-of-bounds read issue in the WebAudi ...

A Javascript reentrancy issues that caused a use-after-free in V8 in Google Chrome prior to 690349781 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page ...

CWE-416 http://www.securityfocus.com/bid/105215 https://www.debian.org/security/2018/dsa-4289 https://access.redhat.com/errata/RHSA-2018:2666 https://chromereleases.googleblog.com/2018/09/stable-channel-update-for-desktop.html https://security.gentoo.org/glsa/201811-10 https://crbug.com/867776 https://access.redhat.com/errata/RHSA-2018:2666 https://www.debian.org/security/./dsa-4289 https://nvd.nist.gov

CVE-2018-16065

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect