10
CVE-2009-2935
- EPSS 5%
- Veröffentlicht 27.08.2009 17:00:01
- Zuletzt bearbeitet 16.06.2026 23:10:32
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Google V8, as used in Google Chrome before 2.0.172.43, allows remote attackers to bypass intended restrictions on reading memory, and possibly obtain sensitive information or execute arbitrary code in the Chrome sandbox, via crafted JavaScript.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 5% | 0.911 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|
http://googlechromereleases.blogspot.com/2009/08/stable-update-security-fixes.html
http://secunia.com/advisories/36417
http://www.vupen.com/english/advisories/2009/2420
http://code.google.com/p/chromium/issues/detail?id=18639
http://osvdb.org/57421
http://www.securityfocus.com/bid/36149
http://www.securitytracker.com/id?1022773
https://exchange.xforce.ibmcloud.com/vulnerabilities/52902