CVE-2014-1704 [Critical] | Denial of Service in Chrome

CVE-2014-1704 is rated High Risk (68/100): CVSS Critical severity, with medium exploitation likelihood (EPSS 1.49%). High exploitation likelihood—assess exposure and prioritize remediation.

#	Date	Old EPSS score	New EPSS score	Delta (New - Old)
1	2025-08-24	1.61%	1.49%	-0.12%
2	2025-06-12	1.88%	1.61%	-0.27%
3	2025-03-19	—	1.88%	—

Date

Old EPSS score

New EPSS score

Delta (New - Old)

2025-08-24

1.61%

1.49%

-0.12%

2025-06-12

1.88%

1.61%

-0.27%

2025-03-19

—

1.88%

—

Base score	Version	Severity	Vector	Exploitability	Impact	Score source
10.0	2.0	HIGH	`AV:N/AC:L/Au:N/C:C/I:C/A:C` Click to expand Access vector (AV:N) Can be exploited remotely over network reachability. Access complexity (AC:L) Exploitation conditions are straightforward and predictable. Authentication (AU:N) No authentication is required. Confidentiality impact (C:C) Complete confidentiality impact. Integrity impact (I:C) Complete integrity impact. Availability impact (A:C) Complete availability impact.	10.0	10.0	[email protected]

Base score

Version

Severity

Vector

Exploitability

Impact

Score source

10.0

2.0

HIGH

AV:N/AC:L/Au:N/C:C/I:C/A:C Click to expand

Access vector (AV:N): Can be exploited remotely over network reachability.
Access complexity (AC:L): Exploitation conditions are straightforward and predictable.
Authentication (AU:N): No authentication is required.
Confidentiality impact (C:C): Complete confidentiality impact.
Integrity impact (I:C): Complete integrity impact.
Availability impact (A:C): Complete availability impact.

10.0

[email protected]

OS Trackers for CVE-2014-1704

vendor	priority	summary	link
`gentoo`	normal	CVE-2014-1704: 1 GLSA(s) (201408-16), 1 atom(s) (www-client/chromium); latest impact normal.	https://bugs.gentoo.org/buglist.cgi?quicksearch=CVE-2014-1704
`redhat`	low	—	https://access.redhat.com/security/cve/CVE-2014-1704
`ubuntu`	medium	CVE-2014-1704 medium priority: Ubuntu including 5 source packages (chromium-browser, libv8, libv8-3.14, oxide-qt, qtjsbackend-opensource-src), 75 status rows across 15 suites (artful, bionic, cosmic, lucid, precise, quantal, saucy, trusty, upstream, utopic, vivid, wily, xenial, yakkety, zesty): DNE 34, ignored 16, released 14, not-affected 7, needs-triage 3, needed 1.	https://ubuntu.com/security/CVE-2014-1704

Affected software / configurations for CVE-2014-1704

Vendor	Product	Version	Raw CPE
google	chrome	<= 33.0.1750.146	cpe:2.3:a:google:chrome::::::::
google	chrome	33.0.1750.0	cpe:2.3:a:google:chrome:33.0.1750.0:::::::*
google	chrome	33.0.1750.1	cpe:2.3:a:google:chrome:33.0.1750.1:::::::*
google	chrome	33.0.1750.2	cpe:2.3:a:google:chrome:33.0.1750.2:::::::*
google	chrome	33.0.1750.3	cpe:2.3:a:google:chrome:33.0.1750.3:::::::*
google	chrome	33.0.1750.4	cpe:2.3:a:google:chrome:33.0.1750.4:::::::*
google	chrome	33.0.1750.5	cpe:2.3:a:google:chrome:33.0.1750.5:::::::*
google	chrome	33.0.1750.6	cpe:2.3:a:google:chrome:33.0.1750.6:::::::*
google	chrome	33.0.1750.7	cpe:2.3:a:google:chrome:33.0.1750.7:::::::*
google	chrome	33.0.1750.8	cpe:2.3:a:google:chrome:33.0.1750.8:::::::*
google	chrome	33.0.1750.9	cpe:2.3:a:google:chrome:33.0.1750.9:::::::*
google	chrome	33.0.1750.10	cpe:2.3:a:google:chrome:33.0.1750.10:::::::*
google	chrome	33.0.1750.11	cpe:2.3:a:google:chrome:33.0.1750.11:::::::*
google	chrome	33.0.1750.12	cpe:2.3:a:google:chrome:33.0.1750.12:::::::*
google	chrome	33.0.1750.13	cpe:2.3:a:google:chrome:33.0.1750.13:::::::*
google	chrome	33.0.1750.14	cpe:2.3:a:google:chrome:33.0.1750.14:::::::*
google	chrome	33.0.1750.15	cpe:2.3:a:google:chrome:33.0.1750.15:::::::*
google	chrome	33.0.1750.16	cpe:2.3:a:google:chrome:33.0.1750.16:::::::*
google	chrome	33.0.1750.18	cpe:2.3:a:google:chrome:33.0.1750.18:::::::*
google	chrome	33.0.1750.19	cpe:2.3:a:google:chrome:33.0.1750.19:::::::*
google	chrome	33.0.1750.20	cpe:2.3:a:google:chrome:33.0.1750.20:::::::*
google	chrome	33.0.1750.21	cpe:2.3:a:google:chrome:33.0.1750.21:::::::*
google	chrome	33.0.1750.22	cpe:2.3:a:google:chrome:33.0.1750.22:::::::*
google	chrome	33.0.1750.23	cpe:2.3:a:google:chrome:33.0.1750.23:::::::*
google	chrome	33.0.1750.24	cpe:2.3:a:google:chrome:33.0.1750.24:::::::*
google	chrome	33.0.1750.25	cpe:2.3:a:google:chrome:33.0.1750.25:::::::*
google	chrome	33.0.1750.26	cpe:2.3:a:google:chrome:33.0.1750.26:::::::*
google	chrome	33.0.1750.27	cpe:2.3:a:google:chrome:33.0.1750.27:::::::*
google	chrome	33.0.1750.28	cpe:2.3:a:google:chrome:33.0.1750.28:::::::*
google	chrome	33.0.1750.29	cpe:2.3:a:google:chrome:33.0.1750.29:::::::*
google	chrome	33.0.1750.30	cpe:2.3:a:google:chrome:33.0.1750.30:::::::*
google	chrome	33.0.1750.31	cpe:2.3:a:google:chrome:33.0.1750.31:::::::*
google	chrome	33.0.1750.34	cpe:2.3:a:google:chrome:33.0.1750.34:::::::*
google	chrome	33.0.1750.35	cpe:2.3:a:google:chrome:33.0.1750.35:::::::*
google	chrome	33.0.1750.36	cpe:2.3:a:google:chrome:33.0.1750.36:::::::*
google	chrome	33.0.1750.37	cpe:2.3:a:google:chrome:33.0.1750.37:::::::*
google	chrome	33.0.1750.38	cpe:2.3:a:google:chrome:33.0.1750.38:::::::*
google	chrome	33.0.1750.39	cpe:2.3:a:google:chrome:33.0.1750.39:::::::*
google	chrome	33.0.1750.40	cpe:2.3:a:google:chrome:33.0.1750.40:::::::*
google	chrome	33.0.1750.41	cpe:2.3:a:google:chrome:33.0.1750.41:::::::*
google	chrome	33.0.1750.42	cpe:2.3:a:google:chrome:33.0.1750.42:::::::*
google	chrome	33.0.1750.43	cpe:2.3:a:google:chrome:33.0.1750.43:::::::*
google	chrome	33.0.1750.44	cpe:2.3:a:google:chrome:33.0.1750.44:::::::*
google	chrome	33.0.1750.45	cpe:2.3:a:google:chrome:33.0.1750.45:::::::*
google	chrome	33.0.1750.46	cpe:2.3:a:google:chrome:33.0.1750.46:::::::*
google	chrome	33.0.1750.47	cpe:2.3:a:google:chrome:33.0.1750.47:::::::*
google	chrome	33.0.1750.48	cpe:2.3:a:google:chrome:33.0.1750.48:::::::*
google	chrome	33.0.1750.49	cpe:2.3:a:google:chrome:33.0.1750.49:::::::*
google	chrome	33.0.1750.50	cpe:2.3:a:google:chrome:33.0.1750.50:::::::*
google	chrome	33.0.1750.51	cpe:2.3:a:google:chrome:33.0.1750.51:::::::*
google	chrome	33.0.1750.52	cpe:2.3:a:google:chrome:33.0.1750.52:::::::*
google	chrome	33.0.1750.53	cpe:2.3:a:google:chrome:33.0.1750.53:::::::*
google	chrome	33.0.1750.54	cpe:2.3:a:google:chrome:33.0.1750.54:::::::*
google	chrome	33.0.1750.55	cpe:2.3:a:google:chrome:33.0.1750.55:::::::*
google	chrome	33.0.1750.56	cpe:2.3:a:google:chrome:33.0.1750.56:::::::*
google	chrome	33.0.1750.57	cpe:2.3:a:google:chrome:33.0.1750.57:::::::*
google	chrome	33.0.1750.58	cpe:2.3:a:google:chrome:33.0.1750.58:::::::*
google	chrome	33.0.1750.59	cpe:2.3:a:google:chrome:33.0.1750.59:::::::*
google	chrome	33.0.1750.60	cpe:2.3:a:google:chrome:33.0.1750.60:::::::*
google	chrome	33.0.1750.61	cpe:2.3:a:google:chrome:33.0.1750.61:::::::*
google	chrome	33.0.1750.62	cpe:2.3:a:google:chrome:33.0.1750.62:::::::*
google	chrome	33.0.1750.63	cpe:2.3:a:google:chrome:33.0.1750.63:::::::*
google	chrome	33.0.1750.64	cpe:2.3:a:google:chrome:33.0.1750.64:::::::*
google	chrome	33.0.1750.65	cpe:2.3:a:google:chrome:33.0.1750.65:::::::*
google	chrome	33.0.1750.66	cpe:2.3:a:google:chrome:33.0.1750.66:::::::*
google	chrome	33.0.1750.67	cpe:2.3:a:google:chrome:33.0.1750.67:::::::*
google	chrome	33.0.1750.68	cpe:2.3:a:google:chrome:33.0.1750.68:::::::*
google	chrome	33.0.1750.69	cpe:2.3:a:google:chrome:33.0.1750.69:::::::*
google	chrome	33.0.1750.70	cpe:2.3:a:google:chrome:33.0.1750.70:::::::*
google	chrome	33.0.1750.71	cpe:2.3:a:google:chrome:33.0.1750.71:::::::*
google	chrome	33.0.1750.73	cpe:2.3:a:google:chrome:33.0.1750.73:::::::*
google	chrome	33.0.1750.74	cpe:2.3:a:google:chrome:33.0.1750.74:::::::*
google	chrome	33.0.1750.75	cpe:2.3:a:google:chrome:33.0.1750.75:::::::*
google	chrome	33.0.1750.76	cpe:2.3:a:google:chrome:33.0.1750.76:::::::*
google	chrome	33.0.1750.77	cpe:2.3:a:google:chrome:33.0.1750.77:::::::*
google	chrome	33.0.1750.79	cpe:2.3:a:google:chrome:33.0.1750.79:::::::*
google	chrome	33.0.1750.80	cpe:2.3:a:google:chrome:33.0.1750.80:::::::*
google	chrome	33.0.1750.81	cpe:2.3:a:google:chrome:33.0.1750.81:::::::*
google	chrome	33.0.1750.82	cpe:2.3:a:google:chrome:33.0.1750.82:::::::*
google	chrome	33.0.1750.83	cpe:2.3:a:google:chrome:33.0.1750.83:::::::*

References for CVE-2014-1704

URL	Tags
http://googlechromereleases.blogspot.com/2014/03/stable-channel-update_11.html
http://lists.opensuse.org/opensuse-security-announce/2014-04/msg00008.html
http://security.gentoo.org/glsa/glsa-201408-16.xml
http://www.debian.org/security/2014/dsa-2883
http://www.securitytracker.com/id/1029914
https://code.google.com/p/chromium/issues/detail?id=328202
https://code.google.com/p/chromium/issues/detail?id=345715
https://code.google.com/p/chromium/issues/detail?id=349079
https://code.google.com/p/v8/source/detail?r=18564
https://code.google.com/p/v8/source/detail?r=19614
https://code.google.com/p/v8/source/detail?r=19668

URL

CVE-2014-1704

Exploit prediction scoring system (EPSS) score for CVE-2014-1704

Common vulnerability scoring system (CVSS) metrics for CVE-2014-1704

Weakness enumeration for CVE-2014-1704

OS Trackers for CVE-2014-1704

Affected software / configurations for CVE-2014-1704

References for CVE-2014-1704