Unrated severityCISA KEVNVD Advisory· Published Nov 14, 2018· Updated Oct 21, 2025
CVE-2018-17463
CVE-2018-17463
Description
Incorrect side effect annotation in V8 in Google Chrome prior to 70.0.3538.64 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- osv-coords2 versionspkg:rpm/opensuse/chromium&distro=openSUSE%20Tumbleweedpkg:rpm/suse/chromium&distro=SUSE%20Package%20Hub%2012%20SP2
< 93.0.4577.82-1.1+ 1 more
- (no CPE)range: < 93.0.4577.82-1.1
- (no CPE)range: < 70.0.3538.102-74.1
Patches
Vulnerability mechanics
References
7- access.redhat.com/errata/RHSA-2018:3004mitrevendor-advisoryx_refsource_REDHAT
- security.gentoo.org/glsa/201811-10mitrevendor-advisoryx_refsource_GENTOO
- www.debian.org/security/2018/dsa-4330mitrevendor-advisoryx_refsource_DEBIAN
- packetstormsecurity.com/files/156640/Google-Chrome-67-68-69-Object.create-Type-Confusion.htmlmitrex_refsource_MISC
- www.securityfocus.com/bid/105666mitrevdb-entryx_refsource_BID
- chromereleases.googleblog.com/2018/10/stable-channel-update-for-desktop.htmlmitrex_refsource_CONFIRM
- crbug.com/888923mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.