CVE-2019-13764

🗓️ 10 Dec 2019 21:01:57Reported by ChromeType

cve🔗 web.nvd.nist.gov📰️ 5 Media mentions👁 267 Views

Type confusion in JavaScript in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page

Reporter	Title	Published	Views	Family All 57
GithubExploit	Exploit for Type Confusion in Google Chrome	27 Jul 202108:30	–	githubexploit
Circl	CVE-2019-13764	7 Jun 202218:51	–	circl
CNVD	Google Chrome Type Obfuscation Vulnerability (CNVD-2019-46422)	11 Dec 201900:00	–	cnvd
Check Point Advisories	Google Chrome Heap Corruption (CVE-2019-13764)	11 Aug 202100:00	–	checkpoint_advisories
Cvelist	CVE-2019-13764	10 Dec 201921:01	–	cvelist
Debian	[SECURITY] [DSA 4606-1] chromium security update	20 Jan 202011:59	–	debian
Debian	[SECURITY] [DSA 4606-1] chromium security update	20 Jan 202011:59	–	debian
Debian CVE	CVE-2019-13764	10 Dec 201921:01	–	debiancve
Tenable Nessus	Debian DSA-4606-1 : chromium - security update	21 Jan 202000:00	–	nessus
Tenable Nessus	Fedora 31 : chromium (2019-1a10c04281)	18 Dec 201900:00	–	nessus

NVD

Vulners

Node

google chromeRange<79.0.3945.79

Node

debian debian_linuxMatch9.0

debian debian_linuxMatch10.0

Node

fedoraproject fedoraMatch30

fedoraproject fedoraMatch31

Node

suse package_hubMatch-

AND

suse linux_enterpriseMatch12.0

Node

opensuse backports_sleMatch15.0sp1

Node

redhat enterprise_linux_desktopMatch6.0

redhat enterprise_linux_serverMatch6.0

redhat enterprise_linux_workstationMatch6.0

[
  {
    "product": "Chrome",
    "vendor": "Google",
    "versions": [
      {
        "lessThan": "79.0.3945.79",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N5CIQCVS6E3ULJCNU7YJXJPO2BLQZDTK/
lists	www.lists.opensuse.org/opensuse-security-announce/2019-12/msg00032.html
crbug	www.crbug.com/1028863
lists	www.lists.opensuse.org/opensuse-security-announce/2019-12/msg00036.html
debian	www.debian.org/security/2020/dsa-4606
access	www.access.redhat.com/errata/RHSA-2019:4238
security	www.security.gentoo.org/glsa/202003-08
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2Z5M4FPUMDNX2LDPHJKN5ZV5GIS2AKNU/
seclists	www.seclists.org/bugtraq/2020/Jan/27
chromereleases	www.chromereleases.googleblog.com/2019/12/stable-channel-update-for-desktop.html

21 Nov 2024 04:25Current

8.4High risk

Vulners AI Score8.4

CVSS 26.8

CVSS 3.18.8

EPSS0.39522

CWE-843