7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:C/I:N/A:N
0.037 Low
EPSS
Percentile
90.8%
Google Chrome Releases reports (belatedly):
9 security fixes in this release, including:
[354967] High CVE-2014-1730: Type confusion in V8. Credit to
Anonymous.
[349903] High CVE-2014-1731: Type confusion in DOM. Credit to
John Butler.
[359802] High CVE-2014-1736: Integer overflow in V8. Credit to
SkyLined working with HP’s Zero Day Initiative.
[352851] Medium CVE-2014-1732: Use-after-free in Speech
Recognition. Credit to Khalil Zhani.
[351103] Medium CVE-2014-1733: Compiler bug in Seccomp-BPF.
Credit to Jed Davis.
[367314] CVE-2014-1734: Various fixes from internal audits,
fuzzing and other initiatives.
[359130, 359525, 360429] CVE-2014-1735: Multiple
vulnerabilities in V8 fixed in version 3.24.35.33.