VYPR

V8

by Google

Source repositories

CVEs (108)

  • CVE-2013-2838May 22, 2013
    risk 0.00cvss epss 0.02

    Google V8, as used in Google Chrome before 27.0.1453.93, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

  • CVE-2013-2632Mar 21, 2013
    risk 0.00cvss epss 0.01

    Google V8 before 3.17.13, as used in Google Chrome before 27.0.1444.3, allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via crafted JavaScript code, as demonstrated by the Bejeweled game.

  • CVE-2013-0836Jan 15, 2013
    risk 0.00cvss epss 0.01

    Google V8 before 3.14.5.3, as used in Google Chrome before 24.0.1312.52, does not properly implement garbage collection, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via crafted JavaScript code.

  • CVE-2012-5153Jan 15, 2013
    risk 0.00cvss epss 0.01

    Google V8 before 3.14.5.3, as used in Google Chrome before 24.0.1312.52, allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted JavaScript code that triggers an out-of-bounds access to stack memory.

  • CVE-2012-5128Nov 7, 2012
    risk 0.00cvss epss 0.01

    Google V8 before 3.13.7.5, as used in Google Chrome before 23.0.1271.64, does not properly perform write operations, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

  • CVE-2012-5120Nov 7, 2012
    risk 0.00cvss epss 0.02

    Google V8 before 3.13.7.5, as used in Google Chrome before 23.0.1271.64, on 64-bit Linux platforms allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted JavaScript code that triggers an out-of-bounds access to an array.

  • CVE-2011-3115May 24, 2012
    risk 0.00cvss epss 0.02

    Google V8, as used in Google Chrome before 19.0.1084.52, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger "type corruption."

  • CVE-2011-3111May 24, 2012
    risk 0.00cvss epss 0.01

    Google V8, as used in Google Chrome before 19.0.1084.52, allows remote attackers to cause a denial of service (invalid read operation) via unspecified vectors.

  • CVE-2011-3103May 24, 2012
    risk 0.00cvss epss 0.02

    Google V8, as used in Google Chrome before 19.0.1084.52, does not properly perform garbage collection, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via crafted JavaScript code.

  • CVE-2011-3092May 16, 2012
    risk 0.00cvss epss 0.02

    The regex implementation in Google V8, as used in Google Chrome before 19.0.1084.46, allows remote attackers to cause a denial of service (invalid write operation) or possibly have unspecified other impact via unknown vectors.

  • CVE-2011-3057Mar 22, 2012
    risk 0.00cvss epss 0.02

    Google V8, as used in Google Chrome before 17.0.963.83, allows remote attackers to cause a denial of service via vectors that trigger an invalid read operation.

  • CVE-2011-3031Mar 5, 2012
    risk 0.00cvss epss 0.02

    Use-after-free vulnerability in the element wrapper in Google V8, as used in Google Chrome before 17.0.963.65, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

  • CVE-2011-5037Dec 30, 2011
    risk 0.00cvss epss 0.02

    Google V8 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters, as demonstrated by attacks against Node.js.

  • CVE-2011-3914Dec 13, 2011
    risk 0.00cvss epss 0.01

    The internationalization (aka i18n) functionality in Google V8, as used in Google Chrome before 16.0.912.63, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that trigger an out-of-bounds write.

  • CVE-2011-2830Oct 28, 2011
    risk 0.00cvss epss 0.01

    Google V8, as used in Google Chrome before 14.0.835.163, does not properly implement script object wrappers, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via unknown vectors.

  • CVE-2011-3886Oct 25, 2011
    risk 0.00cvss epss 0.01

    Google V8, as used in Google Chrome before 15.0.874.102, allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted JavaScript code that triggers out-of-bounds write operations.

  • CVE-2011-2875Sep 19, 2011
    risk 0.00cvss epss 0.01

    Google V8, as used in Google Chrome before 14.0.835.163, does not properly perform object sealing, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that leverage "type confusion."

  • CVE-2011-2862Sep 19, 2011
    risk 0.00cvss epss 0.01

    Google V8, as used in Google Chrome before 14.0.835.163, does not properly restrict access to built-in objects, which has unspecified impact and remote attack vectors.

  • CVE-2011-2856Sep 19, 2011
    risk 0.00cvss epss 0.01

    Google V8, as used in Google Chrome before 14.0.835.163, allows remote attackers to bypass the Same Origin Policy via unspecified vectors.

  • CVE-2011-2828Aug 29, 2011
    risk 0.00cvss epss 0.01

    Google V8, as used in Google Chrome before 13.0.782.215, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that trigger an out-of-bounds write.

Page 5 of 6