8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Google Chrome is a web browser from Google, Inc. An out-of-bounds read vulnerability exists in versions of Google Chrome prior to 110.0.5481.77. The vulnerability stems from a lack of proper validation of user-supplied data in WebRTC, where specially crafted data could trigger a read beyond the end of the allocated buffer. An attacker could exploit this vulnerability to perform out-of-bounds memory reads via a specially crafted HTML page.
CPE | Name | Operator | Version |
---|---|---|---|
google chrome <110. | eq | 0.5481.77 |