CVE-2014-3178
Use-after-free vulnerability in core/dom/Node.cpp in Blink, as used in Google Chrome before 37.0.2062.120, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging improper handling of render-tree inconsistencies.
Ver en NVDSeveridad
N/A
EPSS
Probabilidad de explotación (próx. 30 días): 0.0146 (1.5%)
Percentil: 81.0%
EPSS: 2026-05-06
Afecta
google:chromeDescripción técnica
Use-after-free vulnerability in core/dom/Node.cpp in Blink, as used in Google Chrome before 37.0.2062.120, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging improper handling of render-tree inconsistencies.
Publicada: 10/9/2014, 10:55:07
Última modificación: 6/5/2026, 22:30:45
Referencias
- http://googlechromereleases.blogspot.com/2014/09/stable-channel-update_9.html
- http://secunia.com/advisories/61446
- http://security.gentoo.org/glsa/glsa-201409-06.xml
- http://www.debian.org/security/2014/dsa-3039
- http://www.securityfocus.com/bid/69709
- https://crbug.com/401362
- https://exchange.xforce.ibmcloud.com/vulnerabilities/95815
- https://src.chromium.org/viewvc/blink?revision=180539&view=revision