CVE-2019-13764Type Confusion in Google Chrome

CWE-843Type Confusion11 documents9 sources
Severity
8.8HIGHNVD
EPSS
39.5%
top 2.69%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
8
Google ChromeChromiumDebian Linux+5 more
Timeline
PublishedDec 10
Latest updateMay 24

Description

Type confusion in JavaScript in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages7 packages

CVEListV5google/chromeunspecified79.0.3945.79
NVDgoogle/chrome< 79.0.3945.79
Debianchromium/chromium< 79.0.3945.79-1+3

Also affects: Debian Linux 10.0, 9.0, Fedora 30, 31

Patches

Patch: crbug.comPatch: crbug.com

🔴Vulnerability Details

6
GHSA
GHSA-8fwf-6328-m3pr: Type confusion in JavaScript in Google Chrome prior to 792022-05-24
Project0
Déjà vu-lnerability - Project Zero2021-02-01
Project0
In-the-Wild Series: Chrome Infinity Bug - Project Zero2021-01-01
Project0
In-the-Wild Series: Chrome Exploits - Project Zero2021-01-01
CVEList
CVE-2019-13764: Type confusion in JavaScript in Google Chrome prior to 792019-12-10

📋Vendor Advisories

3
Chrome
Stable Channel Update for Desktop: CVE-2019-137642019-12-10
Red Hat
chromium-browser: Type Confusion in V82019-12-10
Debian
CVE-2019-13764: chromium - Type confusion in JavaScript in Google Chrome prior to 79.0.3945.79 allowed a re...2019

💬Community

1
Bugzilla
CVE-2019-13764 chromium-browser: Type Confusion in V82019-12-11
CVE-2019-13764 — Type Confusion in Google Chrome | cvebase