CVE-2013-0836 — Google Chrome vulnerability

CWE-3997 documents5 sources

Severity

6.8MEDIUMNVD

EPSS

0.7%

top 28.71%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Google Chrome Google V8 Opensuse

Timeline

PublishedJan 15

Latest updateMay 14

Description

Google V8 before 3.14.5.3, as used in Google Chrome before 24.0.1312.52, does not properly implement garbage collection, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via crafted JavaScript code.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages3 packages

▶NVDgoogle/chrome24.0.1312.51+120

▶NVDgoogle/v83.14.5+97

▶NVDopensuse/opensuse12.1, 12.2+1

🔴Vulnerability Details

GHSA

GHSA-q564-r293-mxjm: Google V8 before 3↗2022-05-14

▶

OSV

CVE-2013-0836: Google V8 before 3↗2013-01-15

▶

CVEList

CVE-2013-0836: Google V8 before 3↗2013-01-15

▶

💬Community

Bugzilla

CVE-2013-0836 v8: DoS due to improperly implemented garbage collection↗2013-01-16

▶

Bugzilla

CVE-2012-5153 CVE-2013-0836 v8 various flaws [fedora-all]↗2013-01-16

▶

Bugzilla

CVE-2012-5153 CVE-2013-0836 v8 various flaws [epel-6]↗2013-01-16

▶