Multiple Vulnerabilities in Google V8 Engine Affecting Google Chrome
CVE-2016-3679

8.8HIGH

Key Information:

Vendor

Google
Status
V8
Vendor
CVE Published:
29 March 2016

What is CVE-2016-3679?

Multiple unspecified vulnerabilities in the Google V8 engine prior to version 4.9.385.33, as utilized in Google Chrome versions before 49.0.2623.108, can potentially enable attackers to execute denial of service attacks or inflict other impacts through unidentified means. This vulnerability may compromise the stability and security of systems running affected versions, making timely updates crucial for protection.

References

http://rhn.redhat.com/errata/RHSA-2016-0525.html
vendor-advisoryx_refsource_REDHAT
http://lists.opensuse.org/opensuse-security-announce/2016...
vendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016...
vendor-advisoryx_refsource_SUSE

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2016-3679 : Multiple Vulnerabilities in Google V8 Engine Affecting Google Chrome