Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2014-1730

Опубликовано: 01 апр. 2014
Источник: redhat
CVSS2: 4.3
EPSS Низкий

Описание

Google V8, as used in Google Chrome before 34.0.1847.131 on Windows and OS X and before 34.0.1847.132 on Linux, does not properly store internationalization metadata, which allows remote attackers to bypass intended access restrictions by leveraging "type confusion" and reading property values, related to i18n.js and runtime.cc.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
CloudForms Management Engine 5ruby193-v8Not affected
OpenShift Enterprise 1ruby193-v8Not affected
Red Hat OpenShift Enterprise 2v8Not affected
Red Hat OpenStack Platform 3ruby193-v8Not affected
Red Hat OpenStack Platform 3v8Not affected
Red Hat OpenStack Platform 4ruby193-v8Not affected
Red Hat OpenStack Platform 4v8Not affected
Red Hat Satellite 6v8Not affected
Red Hat Software Collectionsv8314-v8Not affected
Red Hat Subscription Asset Managerruby193-v8Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=1091834v8: type confusion issue fixed in Google Chrome 34.0.1847.131

EPSS

Процентиль: 70%
0.00674
Низкий

4.3 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2014-1730

ubuntu
около 11 лет назад

Google V8, as used in Google Chrome before 34.0.1847.131 on Windows and OS X and before 34.0.1847.132 on Linux, does not properly store internationalization metadata, which allows remote attackers to bypass intended access restrictions by leveraging "type confusion" and reading property values, related to i18n.js and runtime.cc.

nvd логотип

CVE-2014-1730

nvd
около 11 лет назад

Google V8, as used in Google Chrome before 34.0.1847.131 on Windows and OS X and before 34.0.1847.132 on Linux, does not properly store internationalization metadata, which allows remote attackers to bypass intended access restrictions by leveraging "type confusion" and reading property values, related to i18n.js and runtime.cc.

debian логотип

CVE-2014-1730

debian
около 11 лет назад

Google V8, as used in Google Chrome before 34.0.1847.131 on Windows an ...

github логотип

GHSA-78jq-7m93-2fvg

github
около 3 лет назад

Google V8, as used in Google Chrome before 34.0.1847.131 on Windows and OS X and before 34.0.1847.132 on Linux, does not properly store internationalization metadata, which allows remote attackers to bypass intended access restrictions by leveraging "type confusion" and reading property values, related to i18n.js and runtime.cc.

fstec логотип

BDU:2015-00097

fstec
около 11 лет назад

Уязвимость браузера Google Chrome, позволяющая злоумышленнику обойти ограничения доступа

EPSS

Процентиль: 70%
0.00674
Низкий

4.3 Medium

CVSS2