Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:42231
HistoryAug 06, 2023 - 11:58 a.m.

Type Confusion

2023-08-0611:58:47
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
chromium
v8
type confusion
vulnerability
arbitrary read/write
html page

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

0.001 Low

EPSS

Percentile

49.0%

chromium is vulnerable to Type Confusion. The vulnerability exists in the V8 of the library, which allows an attacker to perform arbitrary read/write via a crafted HTML page

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

0.001 Low

EPSS

Percentile

49.0%