CVE-2014-7926
Severity
7.5HIGH
EPSS
2.3%
top 15.33%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedJan 22
Latest updateMay 14
Description
The Regular Expressions package in International Components for Unicode (ICU) 52 before SVN revision 292944, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via vectors related to a zero-length quantifier.
CVSS vector
AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4
Affected Packages8 packages
Also affects: Ubuntu Linux 14.04, 14.10, Enterprise Linux 6.0, 6.6.z
🔴Vulnerability Details
4GHSA▶
GHSA-vf27-fm4x-9fp4: The Regular Expressions package in International Components for Unicode (ICU) 52 before SVN revision 292944, as used in Google Chrome before 40↗2022-05-14
OSV▶
CVE-2014-7926: The Regular Expressions package in International Components for Unicode (ICU) 52 before SVN revision 292944, as used in Google Chrome before 40↗2015-01-22
CVEList▶
CVE-2014-7926: The Regular Expressions package in International Components for Unicode (ICU) 52 before SVN revision 292944, as used in Google Chrome before 40↗2015-01-22