CNVD-2019-01581 — Vulnetix

CNVD-2019-01581 PUBLISHED CVSS 8.800000190734863 HIGH

Google Chrome是美国谷歌（Google）公司开发的一款Web浏览器。V8是其中的一套开源JavaScript引擎。 Google Chrome 71.0.3578.80之前版本中的V8存在越界写入漏洞。远程攻击者可借助特制的HTML页面利用该漏洞在沙盒中执行任意代码。

Risk Scores

CVSS v3.1

8.800000190734863

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Products

Vendor	Product	Versions
Google	Chrome	*

Timeline

Dec 5, 2018 CVE Published
Sep 25, 2019 PoC Published
Oct 9, 2020 PoC Published
Jun 14, 2023 PoC Published
Dec 24, 2024 PoC Published
Feb 23, 2025 PoC Published
Mar 3, 2025 PoC Published
Feb 2, 2026 PoC Published
Apr 17, 2026 Distribution Patch
Apr 17, 2026 Distribution Patch
Apr 17, 2026 Security Advisory
Apr 17, 2026 Security Advisory

References

https://crbug.com/905940 url
https://chromereleases.googleblog.com/2018/12/stable-channel-update-for-desktop.html url
RHSA-2018:3803 vendor-advisory
DSA-4352 vendor-advisory
106084 vdb
GLSA-201908-18 vendor-advisory
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-17480 url

Open in Interactive Console →

$ Console Community · 100/wk Open console ›