Unrated severityNVD Advisory· Published Apr 26, 2014· Updated May 6, 2026

CVE-2014-1730

Description

Google V8, as used in Google Chrome before 34.0.1847.131 on Windows and OS X and before 34.0.1847.132 on Linux, does not properly store internationalization metadata, which allows remote attackers to bypass intended access restrictions by leveraging "type confusion" and reading property values, related to i18n.js and runtime.cc.

Affected products

Google/Chrome
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
Range: <34.0.1847.131

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

googlechromereleases.blogspot.com/2014/04/stable-channel-update_24.htmlnvd
lists.opensuse.org/opensuse-updates/2014-05/msg00049.htmlnvd
lists.opensuse.org/opensuse-updates/2014-05/msg00050.htmlnvd
secunia.com/advisories/58301nvd
secunia.com/advisories/60372nvd
security.gentoo.org/glsa/glsa-201408-16.xmlnvd
www.debian.org/security/2014/dsa-2920nvd
code.google.com/p/chromium/issues/detailnvd
code.google.com/p/v8/source/detailnvd
code.google.com/p/v8/source/detailnvd
code.google.com/p/v8/source/detailnvd
code.google.com/p/v8/source/detailnvd
code.google.com/p/v8/source/detailnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000