CVE-2014-3154 — Google Chrome vulnerability

5 documents4 sources

Severity

7.5HIGHNVD

OSV7.8

EPSS

1.9%

top 16.61%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Google Chrome

Timeline

PublishedJun 11

Latest updateMay 14

Description

Use-after-free vulnerability in the ChildThread::Shutdown function in content/child/child_thread.cc in the filesystem API in Google Chrome before 35.0.1916.153 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to a Blink shutdown.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

▶NVDgoogle/chrome35.0.1916.152+103

🔴Vulnerability Details

GHSA

GHSA-94c4-x3j6-9f29: Use-after-free vulnerability in the ChildThread::Shutdown function in content/child/child_thread↗2022-05-14

▶

OSV

oxide-qt vulnerabilities↗2014-07-23

▶

OSV

CVE-2014-3154: Use-after-free vulnerability in the ChildThread::Shutdown function in content/child/child_thread↗2014-06-11

▶

📋Vendor Advisories

Ubuntu

Oxide vulnerabilities↗2014-07-23

▶