Lucene search

K

ChromeCVELIST:CVE-2014-3192

HistoryOct 08, 2014 - 10:00 a.m.

CVE-2014-3192

2014-10-0810:00:00

Chrome

www.cve.org

4.4 Medium

AI Score

Confidence

High

0.043 Low

EPSS

Percentile

92.3%

Use-after-free vulnerability in the ProcessingInstruction::setXSLStyleSheet function in core/dom/ProcessingInstruction.cpp in the DOM implementation in Blink, as used in Google Chrome before 38.0.2125.101, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

References

googlechromereleases.blogspot.com/2014/10/stable-channel-update.html

lists.apple.com/archives/security-announce/2015/Jan/msg00000.html

lists.apple.com/archives/security-announce/2015/Jan/msg00001.html

lists.apple.com/archives/security-announce/2015/Jan/msg00002.html

lists.apple.com/archives/security-announce/2015/Jun/msg00006.html

rhn.redhat.com/errata/RHSA-2014-1626.html

support.apple.com/HT204243

support.apple.com/HT204245

support.apple.com/HT204246

www.securityfocus.com/bid/70273

www.securitytracker.com/id/1031647

crbug.com/403276

src.chromium.org/viewvc/blink?revision=182309&view=revision

support.apple.com/kb/HT204949

4.4 Medium

AI Score

Confidence

High

0.043 Low

EPSS

Percentile

92.3%

Related for CVELIST:CVE-2014-3192

ubuntucve1 cve1 prion1 debiancve1 nvd1 securityvulns7 nessus15 ubuntu1 redhat1 openvas6 mageia1 threatpost1 chrome1 freebsd1 gentoo1 kaspersky1