CVE-2013-2882 — Type Confusion in Google Chrome

CWE-843 — Type Confusion8 documents6 sources

Severity

7.5HIGHNVD

EPSS

1.5%

top 18.57%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Nodejs Node.js Google Chrome Debian Linux +1 more

Timeline

PublishedJul 31

Latest updateMay 17

Description

Google V8, as used in Google Chrome before 28.0.1500.95, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that leverage "type confusion."

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages3 packages

▶NVDgoogle/chrome28.0.1500.94+68

▶NVDnodejs/node.js0.10.0 — 0.10.16

▶NVDredhat/openstack3.0

Also affects: Debian Linux 7.0

🔴Vulnerability Details

GHSA

GHSA-4368-3x2v-g4cm: Google V8, as used in Google Chrome before 28↗2022-05-17

▶

OSV

CVE-2013-2882: Google V8, as used in Google Chrome before 28↗2013-07-31

▶

CVEList

CVE-2013-2882: Google V8, as used in Google Chrome before 28↗2013-07-30

▶

📋Vendor Advisories

Red Hat

v8: remote DoS or unspecified other impact via type confusion↗2013-07-30

▶

💬Community

Bugzilla

CVE-2013-2882 v8: remote DoS or unspecified other impact via type confusion [epel-6]↗2013-08-01

▶

Bugzilla

CVE-2013-2882 v8: remote DoS or unspecified other impact via type confusion [fedora-all]↗2013-08-01

▶

Bugzilla

CVE-2013-2882 v8: remote DoS or unspecified other impact via type confusion↗2013-08-01

▶