Unrated severityCISA KEVNVD Advisory· Published Nov 14, 2018· Updated Oct 21, 2025
CVE-2018-6065
CVE-2018-6065
Description
Integer overflow in computing the required allocation size when instantiating a new javascript object in V8 in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- osv-coords2 versionspkg:rpm/opensuse/chromium&distro=openSUSE%20Tumbleweedpkg:rpm/suse/chromium&distro=SUSE%20Package%20Hub%2012%20SP2
< 93.0.4577.82-1.1+ 1 more
- (no CPE)range: < 93.0.4577.82-1.1
- (no CPE)range: < 66.0.3359.181-55.1
Patches
Vulnerability mechanics
References
7- www.exploit-db.com/exploits/44584/mitreexploitx_refsource_EXPLOIT-DB
- access.redhat.com/errata/RHSA-2018:0484mitrevendor-advisoryx_refsource_REDHAT
- www.debian.org/security/2018/dsa-4182mitrevendor-advisoryx_refsource_DEBIAN
- www.securityfocus.com/bid/103297mitrevdb-entryx_refsource_BID
- chromereleases.googleblog.com/2018/03/stable-channel-update-for-desktop.htmlmitrex_refsource_CONFIRM
- crbug.com/808192mitrex_refsource_MISC
- www.zerodayinitiative.com/advisories/ZDI-19-367/mitrex_refsource_MISC
News mentions
1- SHADOW-VOID-042 Targets Multiple Industries with Void Rabisu-like TacticsTrend Micro Research · Dec 11, 2025