CVE-2014-1720Google Chrome vulnerability

CWE-3993 documents3 sources
Severity
7.5HIGHNVD
EPSS
1.4%
top 19.68%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Google Chrome
Timeline
PublishedApr 9
Latest updateMay 17

Description

Use-after-free vulnerability in the HTMLBodyElement::insertedInto function in core/html/HTMLBodyElement.cpp in Blink, as used in Google Chrome before 34.0.1847.116, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving attributes.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDgoogle/chrome34.0.1847.115

🔴Vulnerability Details

2
GHSA
GHSA-fw9m-qhpg-r3m4: Use-after-free vulnerability in the HTMLBodyElement::insertedInto function in core/html/HTMLBodyElement2022-05-17
OSV
CVE-2014-1720: Use-after-free vulnerability in the HTMLBodyElement::insertedInto function in core/html/HTMLBodyElement2014-04-09