cbcvebase.
CVE-2016-1646
published 2016-03-29

CVE-2016-1646: The Array.prototype.concat implementation in builtins.cc in Google V8, as used in Google Chrome before 49.0.2623.108, does not properly consider element data…

PriorityP278high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
KEVITW
CISA Known Exploited Vulnerabilitydue 2022-06-22
Exploited in the wild
EPSS
48.11%
98.7th percentile
The Array.prototype.concat implementation in builtins.cc in Google V8, as used in Google Chrome before 49.0.2623.108, does not properly consider element data types, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via crafted JavaScript code.

Affected

12 ranges
VendorProductVersion rangeFixed in
canonicalubuntu_linux
canonicalubuntu_linux
canonicalubuntu_linux
debiandebian_linux
debiandebian_linux
googlechrome< 49.0.2623.10849.0.2623.108
opensuseleap
opensuseopensuse
redhatenterprise_linux_desktop
redhatenterprise_linux_eus
redhatenterprise_linux_server
redhatenterprise_linux_workstation

Detection & IOCsextracted from sources · hover to see the quote

  • Vulnerability exists in the Array.prototype.concat implementation in builtins.cc in Google V8; crafted JavaScript code triggering out-of-bounds read is the attack vector
  • Attack is delivered via crafted JavaScript and can affect multiple Chromium-based browsers including Google Chrome, Microsoft Edge, and Opera — monitor for exploitation attempts through browser-based JavaScript execution
  • ·Vulnerable versions are Google Chrome before 49.0.2623.108; ensure patched version is 49.0.2623.108 or later
  • ·Red Hat Enterprise Linux 6 Supplementary users should apply RHSA-2016:0525 to remediate the affected chromium-browser package

CVSS provenance

nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
osv9.8CRITICAL
vulncheck8.8HIGH
cisa8.8HIGH
vendor_ubuntu9.8CRITICAL
vendor_redhat8.8HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.