Lucene search

K

Veracode Vulnerability DatabaseVERACODE:31840

HistoryAug 27, 2021 - 10:47 a.m.

Arbitrary Code Execution

2021-08-2710:47:51

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

20

chrome

vulnerability

arbitrary code

execution

v8

google chrome

remote attacker

sandbox

malicious html page

software

EPSS

0.009

Percentile

82.5%

chrome is vulnerable to arbitrary code execution. A type confusion in V8 in Google Chrome allows a remote attacker to execute arbitrary code inside a sandbox via a malicious HTML page.

References

chromereleases.googleblog.com/2021/08/stable-channel-update-for-desktop.html

crbug.com/1234764

lists.fedoraproject.org/archives/list/[email protected]/message/5LVY4WIWTVVYKQMROJJS365TZBKEARCF/

lists.fedoraproject.org/archives/list/[email protected]/message/IPJPUSAWIJMQFBQQQYXAICLI4EKFQOH6/

lists.fedoraproject.org/archives/list/[email protected]/message/QW4R2K5HVJ4R6XDZYOJCCFPIN2XHNS3L/

secdb.alpinelinux.org/edge/community.yaml

EPSS

0.009

Percentile

82.5%

Related for VERACODE:31840

cvelist1 cve1 prion1 ubuntucve1 debiancve1 cnvd1 mscve1 nvd1 alpinelinux1 redhatcve1 kaspersky3 nessus9 freebsd1 suse4 chrome1 openvas6 fedora4 photon1 gentoo1 osv2