PT-2025-25775

Name of the Vulnerable Software and Affected Versions Debian Linux affected versions not specified Description The issue is related to an integer overflow. It was reported by Shaheen Fazim. Recommendations At the moment, there is no information about a newer version that contains a fix for this...

PT-2024-9699 · Microsoft +4 · Edge +5

Name of the Vulnerable Software and Affected Versions: Chromium versions prior to 131.0.6778.204 Google Chrome versions prior to 131.0.6778.204 Microsoft Edge affected versions not specified Description: A vulnerability exists in the V8 JavaScript engine used by Google Chrome and Microsoft Edge...

Google Chrome Code Execution Vulnerability (CNVD-2025-00213)

Google Chrome is a web browser of Google Google, U.S. V8 is one of the open source JavaScript engine. A code execution vulnerability exists in Google Chrome, which is caused by type obfuscation in V8. An attacker can exploit the vulnerability to execute arbitrary code on the system...

PT-2024-6711

Name of the Vulnerable Software and Affected Versions: Google Chrome affected versions not specified Microsoft Edge affected versions not specified Description: The issue is related to incorrect security checks for standard elements in the V8 JavaScript engine handler. This could allow a remote...

PT-2024-6735 · Google +4 · V8 Javascript Engine +5

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 129.0.6668.58 Microsoft Edge versions affected versions not specified Description: The issue is related to a type confusion error in the V8 JavaScript engine, which can be exploited by a remote attacker using a...

PT-2024-6164 · Google +4 · Google Chrome +5

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 128.0.6613.84 Description: The vulnerability is an inappropriate implementation bug in the V8 JavaScript and WebAssembly engine, which could allow a remote attacker to potentially exploit heap corruption via a...

PT-2024-5917 · Google +4 · Google Chrome +5

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 128.0.6613.113 Description: The issue is related to a type confusion in the V8 JavaScript engine of Google Chrome, which could allow a remote attacker to potentially exploit heap corruption via a crafted HTML...

PT-2024-6342 · Google +5 · Google Chrome +6

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 128.0.6613.119 Description: The issue is related to an out of bounds write in the V8 JavaScript engine of Google Chrome and Microsoft Edge browsers. This can allow a remote attacker to potentially exploit heap...

PT-2024-6386 · Google +4 · Google Chrome +5

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 128.0.6613.113 Description: The issue is related to a type confusion in the V8 JavaScript engine, allowing a remote attacker to potentially exploit heap corruption via a crafted HTML page. This could impact the...

Foxit Reader Lock object fields property type confusion vulnerability

Talos Vulnerability Report TALOS-2024-1963 Foxit Reader Lock object fields property type confusion vulnerability April 30, 2024 CVE Number CVE-2024-25575 SUMMARY A type confusion vulnerability vulnerability exists in the way Foxit Reader 2024.1.0.23997 handles a Lock object. A specially crafted...

Object Corruption

chrome is vulnerable to a Object Corruption. The vulnerability is due to object corruption in the V8 JavaScript engine within Google Chrome. It allows a remote attacker to potentially exploit object corruption via a crafted HTML page...

Out Of Bounds Memory Access

chromium is vulnerable to Out Of Bounds Memory Access . The vulnerability is due to a flaw in the V8 JavaScript engine, allowing a remote attacker to perform out-of-bounds memory access via a crafted HTML page...

PT-2024-1166

The vulnerable software is Google Chrome, specifically the V8 JavaScript engine, which is also used in other Chromium-based browsers such as Microsoft Edge, Brave, and Opera. The issue is an out-of-bounds memory access vulnerability that can be exploited by attackers to trigger crashes or execute...

Type Confusion

chromium is vulnerable to Type Confusion. This vulnerability could allow an attacker to execute arbitrary code on a victim's computer by exploiting a flaw in the V8 JavaScript engine. The impact of this vulnerability is high, as it can be exploited by attackers to steal sensitive data, take contr...

Zero-Day Alert: Google Issues Patch for New Chrome Vulnerability - Update Now!

Google on Monday released security updates to patch a high-severity flaw in its Chrome web browser that it said is being actively exploited in the wild. Tracked as CVE-2023-3079, the vulnerability has been described as a type confusion bug in the V8 JavaScript engine. Clement Lecigne of Google's...

Zero-Day Alert: Google Issues Patch for New Chrome Vulnerability - Update Now!

Google on Monday released security updates to patch a high-severity flaw in its Chrome web browser that it said is being actively exploited in the wild. Tracked as CVE-2023-3079 , the vulnerability has been described as a type confusion bug in the V8 JavaScript engine. Clement Lecigne of Google's...

Google Releases Urgent Chrome Update to Fix Actively Exploited Zero-Day Vulnerability

Google on Friday released out-of-band updates to resolve an actively exploited zero-day flaw in its Chrome web browser, making it the first such bug to be addressed since the start of the year. Tracked as CVE-2023-2033, the high-severity vulnerability has been described as a type confusion issue ...

Update now! Emergency fix for Google Chrome's V8 JavaScript engine zero-day flaw released

On Friday, December 2, Google rolled out an out-of-band patch for an actively exploited zero-day vulnerability in its V8 JavaScript engine. The flaw could allow attackers to cause a system crash or execute potentially malicious code. That means you'll want to update Chrome to patch against this...

Foxit Reader deletePages Field Calculate use-after-free vulnerability

Talos Vulnerability Report TALOS-2022-1600 Foxit Reader deletePages Field Calculate use-after-free vulnerability November 10, 2022 CVE Number CVE-2022-32774 SUMMARY A use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader, version 12.0.1.12430. By prematurely...

UBUNTU-CVE-2022-1134

Type confusion in V8 in Google Chrome prior to 100.0.4896.60 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...