Security Advisory

CVE-2018-18342

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-12-11 15:00:00

Last updated 2024-08-05 11:08:21

Assigner Chrome

State PUBLISHED

Description

Execution of user supplied Javascript during object deserialization can update object length leading to an out of bounds write in V8 in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.

← Browse all CVEs View on cve.org ↗