Code Execution Vulnerability in Google Chrome and Chrome OS
CVE-2014-3188

Currently unrated

Key Information:

Vendor: Google
Status: Chrome Os
Vendor: CVE Published:; 8 October 2014

Summary

A vulnerability in Google Chrome and Chrome OS allows remote attackers to execute arbitrary code due to improper handling of IPC interactions and Google V8. This flaw stems from inadequate parsing of escaped indices in JSON data, exposing users to potential threats through crafted inputs. Ensuring the application is updated can mitigate these risks.

References

http://rhn.redhat.com/errata/RHSA-2014-1626.html

vendor-advisoryx_refsource_REDHAT

http://googlechromereleases.blogspot.com/2014/10/stable-c...

x_refsource_CONFIRM

https://crbug.com/416449

x_refsource_CONFIRM

Timeline

Vulnerability published
Oct 8, 2014
Vulnerability Reserved
May 3, 2014