Insufficient validation of untrusted input in V8 in Google Chrome prior to 89.0.4389.128 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Threat-Mapped Scoring

Score: 0.0

Priority: Unclassified

EPSS

Score: 0.92805
Percentile: 0.99751

CVSS Scoring

KEV is present

Mapped CWE(s)

• CWE-787 : Out-of-bounds Write

Affected Products

• cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
• cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*
• cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*
• cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*

← Back to Home