Description
Multiple serious vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, cause denial of service.
Below is a complete list of vulnerabilities:
- An out-of-bounds read in V8 can be exploited remotely to execute arbitrary code;
- A use after free in PDFium can be exploited remotely to obtain sensitive information;
- A heap overflow vulnerability in the Skia component can be exploited remotely to execute arbitrary code;
- A use after free in PDFium can be exploited remotely to obtain sensitive information;
- A use after free in Blink can be exploited remotely to obtain sensitive information;
- A heap overflow vulnerability in the Canvas component can be exploited remotely to cause denial of service;
- A use after free in WebAudio can be exploited remotely to obtain sensitive information;
- A use after free in MediaRecorder can be exploited remotely to obtain sensitive information;
- A heap overflow vulnerability in the Blink component can be exploited remotely to cause denial of service;
- An out-of-bounds read in V8 can be exploited remotely to cause denial of service;
- A use after free in Skia can be exploited remotely to obtain sensitive information;
- A use after free in Skia can be exploited remotely to obtain sensitive information;
Fiches de renseignement originales
Exploitation
Public exploits exist for this vulnerability.
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
Produits associés
Liste CVE
- CVE-2018-17480 critical
- CVE-2018-17481 critical
- CVE-2018-18335 critical
- CVE-2018-18336 critical
- CVE-2018-18337 critical
- CVE-2018-18338 critical
- CVE-2018-18339 critical
- CVE-2018-18340 critical
- CVE-2018-18341 critical
- CVE-2018-18342 critical
- CVE-2018-18343 critical
- CVE-2018-18344 high
- CVE-2018-18345 high
- CVE-2018-18346 high
- CVE-2018-18347 critical
- CVE-2018-18348 warning
- CVE-2018-18349 high
- CVE-2018-18350 high
- CVE-2018-18351 high
- CVE-2018-18352 high
- CVE-2018-18353 high
- CVE-2018-18354 critical
- CVE-2018-18355 warning
- CVE-2018-18356 critical
- CVE-2018-18357 warning
- CVE-2018-18358 high
- CVE-2018-18359 critical
En savoir plus
Découvrez les statistiques de la propagation des vulnérabilités dans votre région statistics.securelist.com
Vous avez trouvé une inexactitude dans la description de cette vulnérabilité ? Faites-le nous savoir !