Vulnerability Details : CVE-2014-1728
Multiple unspecified vulnerabilities in Google Chrome before 34.0.1847.116 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
Vulnerability category: Denial of service
Products affected by CVE-2014-1728
- cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2014-1728
0.61%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 76 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2014-1728
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
References for CVE-2014-1728
-
https://code.google.com/p/chromium/issues/detail?id=356517
356517 - Heap-use-after-free in WebCore::ReplaceSelectionCommand::removeRedundantStylesAndKeepStyleSpanInline - chromium - Monorail
-
http://googlechromereleases.blogspot.com/2014/04/stable-channel-update.html
Chrome Releases: Stable Channel UpdateVendor Advisory
-
https://code.google.com/p/chromium/issues/detail?id=345820
345820 - UNKNOWN in v8::internal::HeapObject::map_word - chromium - Monorail
-
http://security.gentoo.org/glsa/glsa-201408-16.xml
Chromium: Multiple vulnerabilities (GLSA 201408-16) — Gentoo security
-
https://code.google.com/p/chromium/issues/detail?id=354297
354297 - use-of-uninitialized-memory in WebCore::RenderStyle::fontDescription, may cause use-after-free or some such - chromium - Monorail
-
https://code.google.com/p/chromium/issues/detail?id=351815
351815 - Pwnium: Extension system allows compromised renderer access to crosh - chromium - Monorail
-
https://code.google.com/p/chromium/issues/detail?id=350533
350533 - Origin confusion bug in QUIC - chromium - Monorail
-
https://code.google.com/p/chromium/issues/detail?id=358059
358059 - UNKNOWN in v8::internal::HeapObject::map_word - chromium - Monorail
-
https://code.google.com/p/chromium/issues/detail?id=355586
355586 - UNKNOWN in int v8::internal::FlexibleBodyVisitor<v8::internal::NewSpaceScavenger, v8::internal::JSObject::BodyD - chromium - Monorail
-
http://lists.opensuse.org/opensuse-updates/2014-05/msg00012.html
openSUSE-SU-2014:0601-1: moderate: update for chromium
-
https://code.google.com/p/chromium/issues/detail?id=347262
347262 - UNKNOWN in v8::internal::Map::instance_descriptors - chromium - Monorail
-
https://code.google.com/p/chromium/issues/detail?id=352982
352982 - CHECK failure in CHECK(object->map()->IsMap()) failed: ../src/heap-inl.h(818) - chromium - Monorail
-
https://code.google.com/p/chromium/issues/detail?id=348319
348319 - UNKNOWN in v8::internal::MemoryChunk::heap - chromium - Monorail
-
https://code.google.com/p/chromium/issues/detail?id=350537
350537 - Heap-use-after-free in printing::PrintViewManagerBase::ReleasePrinterQuery - chromium - Monorail
-
https://code.google.com/p/chromium/issues/detail?id=353013
353013 - Security: admin.google.com should have HSTS preloaded - chromium - Monorail
-
https://code.google.com/p/chromium/issues/detail?id=350863
350863 - CHECK failure in CHECK(object->map()->IsMap()) failed: ../src/heap-inl.h(833) - chromium - Monorail
-
https://code.google.com/p/chromium/issues/detail?id=360298
360298 - Tracking bug for internal security fixes for Chrome 34, Release 0 - chromium - Monorail
-
https://code.google.com/p/chromium/issues/detail?id=356235
356235 - Untrusted synthetic gestures received in the browser are not verified - chromium - Monorail
-
http://www.debian.org/security/2014/dsa-2905
Debian -- Security Information -- DSA-2905-1 chromium-browser
Jump to