← Voltar para CVEs
CVE-2014-1730
N/ADescricao
Google V8, as used in Google Chrome before 34.0.1847.131 on Windows and OS X and before 34.0.1847.132 on Linux, does not properly store internationalization metadata, which allows remote attackers to bypass intended access restrictions by leveraging "type confusion" and reading property values, related to i18n.js and runtime.cc.
Detalhes CVE
Pontuacao CVSS v3.1N/A
Publicado4/26/2014
Ultima modificacao4/12/2025
Fontenvd
Avistamentos honeypot0
Produtos afetados
apple:mac_os_xgoogle:chromelinux:linux_kernelmicrosoft:windows
Fraquezas (CWE)
CWE-843
Referencias
http://googlechromereleases.blogspot.com/2014/04/stable-channel-update_24.html(chrome-cve-admin@google.com)
http://lists.opensuse.org/opensuse-updates/2014-05/msg00049.html(chrome-cve-admin@google.com)
http://lists.opensuse.org/opensuse-updates/2014-05/msg00050.html(chrome-cve-admin@google.com)
http://secunia.com/advisories/58301(chrome-cve-admin@google.com)
http://secunia.com/advisories/60372(chrome-cve-admin@google.com)
http://security.gentoo.org/glsa/glsa-201408-16.xml(chrome-cve-admin@google.com)
http://www.debian.org/security/2014/dsa-2920(chrome-cve-admin@google.com)
https://code.google.com/p/chromium/issues/detail?id=354967(chrome-cve-admin@google.com)
https://code.google.com/p/v8/source/detail?r=20375(chrome-cve-admin@google.com)
https://code.google.com/p/v8/source/detail?r=20377(chrome-cve-admin@google.com)
https://code.google.com/p/v8/source/detail?r=20388(chrome-cve-admin@google.com)
https://code.google.com/p/v8/source/detail?r=20593(chrome-cve-admin@google.com)
https://code.google.com/p/v8/source/detail?r=20595(chrome-cve-admin@google.com)
http://googlechromereleases.blogspot.com/2014/04/stable-channel-update_24.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-updates/2014-05/msg00049.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-updates/2014-05/msg00050.html(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/58301(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/60372(af854a3a-2127-422b-91ae-364da2661108)
http://security.gentoo.org/glsa/glsa-201408-16.xml(af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2014/dsa-2920(af854a3a-2127-422b-91ae-364da2661108)
https://code.google.com/p/chromium/issues/detail?id=354967(af854a3a-2127-422b-91ae-364da2661108)
https://code.google.com/p/v8/source/detail?r=20375(af854a3a-2127-422b-91ae-364da2661108)
https://code.google.com/p/v8/source/detail?r=20377(af854a3a-2127-422b-91ae-364da2661108)
https://code.google.com/p/v8/source/detail?r=20388(af854a3a-2127-422b-91ae-364da2661108)
https://code.google.com/p/v8/source/detail?r=20593(af854a3a-2127-422b-91ae-364da2661108)
https://code.google.com/p/v8/source/detail?r=20595(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.