CVE-2014-7910

high
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Multiple unspecified vulnerabilities in Google Chrome before 39.0.2171.65 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.

References

http://googlechromereleases.blogspot.com/2014/11/stable-channel-update_18.html

http://rhn.redhat.com/errata/RHSA-2014-1894.html

http://secunia.com/advisories/60194

http://secunia.com/advisories/62608

http://www.securityfocus.com/bid/71161

http://www.securitytracker.com/id/1031241

https://code.google.com/p/chromium/issues/detail?id=337071

https://code.google.com/p/chromium/issues/detail?id=340387

https://code.google.com/p/chromium/issues/detail?id=389451

https://code.google.com/p/chromium/issues/detail?id=391001

https://code.google.com/p/chromium/issues/detail?id=397396

https://code.google.com/p/chromium/issues/detail?id=408426

https://code.google.com/p/chromium/issues/detail?id=409454

https://code.google.com/p/chromium/issues/detail?id=409508

https://code.google.com/p/chromium/issues/detail?id=411159

https://code.google.com/p/chromium/issues/detail?id=411162

https://code.google.com/p/chromium/issues/detail?id=411165

https://code.google.com/p/chromium/issues/detail?id=413743

https://code.google.com/p/chromium/issues/detail?id=413744

https://code.google.com/p/chromium/issues/detail?id=414134

https://code.google.com/p/chromium/issues/detail?id=415407

https://code.google.com/p/chromium/issues/detail?id=417210

https://code.google.com/p/chromium/issues/detail?id=417329

https://code.google.com/p/chromium/issues/detail?id=421090

https://code.google.com/p/chromium/issues/detail?id=421321

https://code.google.com/p/chromium/issues/detail?id=421504

https://code.google.com/p/chromium/issues/detail?id=421720

https://code.google.com/p/chromium/issues/detail?id=421981

https://code.google.com/p/chromium/issues/detail?id=422482

https://code.google.com/p/chromium/issues/detail?id=423030

https://code.google.com/p/chromium/issues/detail?id=423891

https://code.google.com/p/chromium/issues/detail?id=424215

https://code.google.com/p/chromium/issues/detail?id=424999

https://code.google.com/p/chromium/issues/detail?id=425151

https://code.google.com/p/chromium/issues/detail?id=425152

https://code.google.com/p/chromium/issues/detail?id=433500

https://exchange.xforce.ibmcloud.com/vulnerabilities/98798

https://www.exploit-db.com/exploits/34879/

Details

Source: MITRE

Published: 2014-11-19

Updated: 2017-10-05

Risk Information

CVSS v2

Base Score: 7.5

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 10

Severity: HIGH

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* versions up to 39.0.2171.45 (inclusive)

Tenable Plugins

View all (8 total)

IDNameProductFamilySeverity
8580Google Chrome < 39.0.2171.65 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
high
79997openSUSE Security Update : chromium (openSUSE-SU-2014:1626-1)NessusSuSE Local Security Checks
critical
79966GLSA-201412-13 : Chromium: Multiple vulnerabilitiesNessusGentoo Local Security Checks
critical
79426RHEL 6 : chromium-browser (RHSA-2014:1894)NessusRed Hat Local Security Checks
high
79354Ubuntu 14.04 LTS / 14.10 : oxide-qt vulnerabilities (USN-2410-1)NessusUbuntu Local Security Checks
high
79337Google Chrome < 39.0.2171.65 Multiple Vulnerabilities (Mac OS X)NessusMacOS X Local Security Checks
critical
79336Google Chrome < 39.0.2171.65 Multiple VulnerabilitiesNessusWindows
critical
79320FreeBSD : chromium -- multiple vulnerabilities (d395e44f-6f4f-11e4-a444-00262d5ed8ee)NessusFreeBSD Local Security Checks
critical