CVE-2009-2935

EPSS 2.04%
Veröffentlicht 27.08.2009 17:00:01
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

Google V8, as used in Google Chrome before 2.0.172.43, allows remote attackers to bypass intended restrictions on reading memory, and possibly obtain sensitive information or execute arbitrary code in the Chrome sandbox, via crafted JavaScript.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 11

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Google ≫ Chrome Version <= 2.0.172.37

Google ≫ Chrome Version0.2.149.27

Google ≫ Chrome Version0.2.149.29

Google ≫ Chrome Version0.2.149.30

Google ≫ Chrome Version0.2.152.1

Google ≫ Chrome Version0.2.153.1

Google ≫ Chrome Version0.3.154.0

Google ≫ Chrome Version0.3.154.3

Google ≫ Chrome Version0.4.154.18

Google ≫ Chrome Version0.4.154.22

Google ≫ Chrome Version0.4.154.31

Google ≫ Chrome Version0.4.154.33

Google ≫ Chrome Version1.0.154.36

Google ≫ Chrome Version1.0.154.39

Google ≫ Chrome Version1.0.154.42

Google ≫ Chrome Version1.0.154.43

Google ≫ Chrome Version1.0.154.46

Google ≫ Chrome Version1.0.154.48

Google ≫ Chrome Version1.0.154.52

Google ≫ Chrome Version1.0.154.53

Google ≫ Chrome Version1.0.154.59

Google ≫ Chrome Version2.0.156.1

Google ≫ Chrome Version2.0.157.0

Google ≫ Chrome Version2.0.157.2

Google ≫ Chrome Version2.0.158.0

Google ≫ Chrome Version2.0.159.0

Google ≫ Chrome Version2.0.172

Google ≫ Chrome Version2.0.172.30

Google ≫ Chrome Version2.0.172.31

Google ≫ Chrome Version2.0.172.33

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	2.04%	0.822

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	10	10	10	AV:N/AC:L/Au:N/C:C/I:C/A:C

http://googlechromereleases.blogspot.com/2009/08/stable-update-security-fixes.html

Vendor Advisory

http://secunia.com/advisories/36417

Vendor Advisory

http://www.vupen.com/english/advisories/2009/2420

Vendor Advisory

http://code.google.com/p/chromium/issues/detail?id=18639

Vendor Advisory

http://osvdb.org/57421

http://www.securityfocus.com/bid/36149

http://www.securitytracker.com/id?1022773

https://exchange.xforce.ibmcloud.com/vulnerabilities/52902

https://nvd.nist.gov/vuln/detail/CVE-2009-2935

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2009-2935

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2009-2935

EUVD