CVE-2014-3152

Integer underflow in the LCodeGen::PrepareKeyedOperand function in arm/lithium-codegen-arm.cc in Google V8 before 3.25.28.16, as used in Google Chrome before 35.0.1916.114, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger a negative key value.

公開: 2014-05-21 最後更新: 2026-06-16 指派方: [email protected] 來源: [email protected]

結論預警: CVE-2014-3152 綜合評估為中等風險(55.9/100):CVSS 技術影響為高級,利用機率(EPSS 1.95%) 強制指令: 梳理受影響資產並納入修補計畫。

風險隨態勢動態變化;本站持續評估並同步更新本頁展示內容。

CVE-2014-3152 的 EPSS(利用預測評分)

EPSS 日更估計相對被利用可能性;百分位表示該 CVE 在已評分漏洞中的相對排名(越高表示相對更嚴重)。

# 日期 舊 EPSS 分數 新 EPSS 分數 變化(新 − 舊)
1 2026-06-15 3.20% 1.95% -1.24%
2 2025-04-12 2.54% 3.20% +0.66%
3 2025-03-30 2.54%

完整 EPSS 歷史 (共 9 筆)

CVE-2014-3152 的 CVSS 指標

該 CVE 的 CVSS 指標。

底座分 版本 嚴重度 向量 可利用性 影響 分數來源
7.5 2.0 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P 點擊展開
存取路徑 (AV:N)
只要路由可達,即可從遠端發動利用。
存取複雜度 (AC:L)
步驟短、路徑清楚,重現成本低。
認證 (AU:N)
全程無需有效身分。
機密性影響 (C:P)
機密性受到部分損害。
完整性影響 (I:P)
完整性受到部分損害。
可用性影響 (A:P)
可用性受到部分損害。
10.0 6.4 [email protected]

CVE-2014-3152 的弱點列舉

CVE-2014-3152 的 OS 追蹤

vendor priority summary link
redhat medium https://access.redhat.com/security/cve/CVE-2014-3152
ubuntu medium CVE-2014-3152 medium priority: Ubuntu including 5 source packages (chromium-browser, libv8, libv8-3.14, oxide-qt, qtjsbackend-opensource-src), 70 status rows across 14 suites (artful, bionic, cosmic, lucid, precise, saucy, trusty, upstream, utopic, vivid, wily, xenial, yakkety, zesty): DNE 30, released 21, ignored 16, needs-triage 2, needed 1. https://ubuntu.com/security/CVE-2014-3152

CVE-2014-3152 的影響軟體 / 設定

廠商 產品 版本 原始 CPE
fedoraproject fedora 20 cpe:2.3:o:fedoraproject:fedora:20:*:*:*:*:*:*:*
fedoraproject fedora 21 cpe:2.3:o:fedoraproject:fedora:21:*:*:*:*:*:*:*
fedoraproject fedora 22 cpe:2.3:o:fedoraproject:fedora:22:*:*:*:*:*:*:*
google v8 <= 3.25.28 cpe:2.3:a:google:v8:*:*:*:*:*:*:*:*
google v8 3.25.0 cpe:2.3:a:google:v8:3.25.0:*:*:*:*:*:*:*
google v8 3.25.1 cpe:2.3:a:google:v8:3.25.1:*:*:*:*:*:*:*
google v8 3.25.2 cpe:2.3:a:google:v8:3.25.2:*:*:*:*:*:*:*
google v8 3.25.3 cpe:2.3:a:google:v8:3.25.3:*:*:*:*:*:*:*
google v8 3.25.4 cpe:2.3:a:google:v8:3.25.4:*:*:*:*:*:*:*
google v8 3.25.5 cpe:2.3:a:google:v8:3.25.5:*:*:*:*:*:*:*
google v8 3.25.6 cpe:2.3:a:google:v8:3.25.6:*:*:*:*:*:*:*
google v8 3.25.7 cpe:2.3:a:google:v8:3.25.7:*:*:*:*:*:*:*
google v8 3.25.8 cpe:2.3:a:google:v8:3.25.8:*:*:*:*:*:*:*
google v8 3.25.9 cpe:2.3:a:google:v8:3.25.9:*:*:*:*:*:*:*
google v8 3.25.10 cpe:2.3:a:google:v8:3.25.10:*:*:*:*:*:*:*
google v8 3.25.11 cpe:2.3:a:google:v8:3.25.11:*:*:*:*:*:*:*
google v8 3.25.12 cpe:2.3:a:google:v8:3.25.12:*:*:*:*:*:*:*
google v8 3.25.13 cpe:2.3:a:google:v8:3.25.13:*:*:*:*:*:*:*
google v8 3.25.14 cpe:2.3:a:google:v8:3.25.14:*:*:*:*:*:*:*
google v8 3.25.15 cpe:2.3:a:google:v8:3.25.15:*:*:*:*:*:*:*
google v8 3.25.16 cpe:2.3:a:google:v8:3.25.16:*:*:*:*:*:*:*
google v8 3.25.17 cpe:2.3:a:google:v8:3.25.17:*:*:*:*:*:*:*
google v8 3.25.18 cpe:2.3:a:google:v8:3.25.18:*:*:*:*:*:*:*
google v8 3.25.19 cpe:2.3:a:google:v8:3.25.19:*:*:*:*:*:*:*
google v8 3.25.20 cpe:2.3:a:google:v8:3.25.20:*:*:*:*:*:*:*
google v8 3.25.21 cpe:2.3:a:google:v8:3.25.21:*:*:*:*:*:*:*
google v8 3.25.22 cpe:2.3:a:google:v8:3.25.22:*:*:*:*:*:*:*
google v8 3.25.23 cpe:2.3:a:google:v8:3.25.23:*:*:*:*:*:*:*
google v8 3.25.24 cpe:2.3:a:google:v8:3.25.24:*:*:*:*:*:*:*
google v8 3.25.25 cpe:2.3:a:google:v8:3.25.25:*:*:*:*:*:*:*
google v8 3.25.26 cpe:2.3:a:google:v8:3.25.26:*:*:*:*:*:*:*
google v8 3.25.27 cpe:2.3:a:google:v8:3.25.27:*:*:*:*:*:*:*
google chrome <= 35.0.1916.113 cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
google chrome 35.0.1916.0 cpe:2.3:a:google:chrome:35.0.1916.0:*:*:*:*:*:*:*
google chrome 35.0.1916.1 cpe:2.3:a:google:chrome:35.0.1916.1:*:*:*:*:*:*:*
google chrome 35.0.1916.2 cpe:2.3:a:google:chrome:35.0.1916.2:*:*:*:*:*:*:*
google chrome 35.0.1916.3 cpe:2.3:a:google:chrome:35.0.1916.3:*:*:*:*:*:*:*
google chrome 35.0.1916.4 cpe:2.3:a:google:chrome:35.0.1916.4:*:*:*:*:*:*:*
google chrome 35.0.1916.5 cpe:2.3:a:google:chrome:35.0.1916.5:*:*:*:*:*:*:*
google chrome 35.0.1916.6 cpe:2.3:a:google:chrome:35.0.1916.6:*:*:*:*:*:*:*
google chrome 35.0.1916.7 cpe:2.3:a:google:chrome:35.0.1916.7:*:*:*:*:*:*:*
google chrome 35.0.1916.8 cpe:2.3:a:google:chrome:35.0.1916.8:*:*:*:*:*:*:*
google chrome 35.0.1916.9 cpe:2.3:a:google:chrome:35.0.1916.9:*:*:*:*:*:*:*
google chrome 35.0.1916.10 cpe:2.3:a:google:chrome:35.0.1916.10:*:*:*:*:*:*:*
google chrome 35.0.1916.11 cpe:2.3:a:google:chrome:35.0.1916.11:*:*:*:*:*:*:*
google chrome 35.0.1916.13 cpe:2.3:a:google:chrome:35.0.1916.13:*:*:*:*:*:*:*
google chrome 35.0.1916.14 cpe:2.3:a:google:chrome:35.0.1916.14:*:*:*:*:*:*:*
google chrome 35.0.1916.15 cpe:2.3:a:google:chrome:35.0.1916.15:*:*:*:*:*:*:*
google chrome 35.0.1916.17 cpe:2.3:a:google:chrome:35.0.1916.17:*:*:*:*:*:*:*
google chrome 35.0.1916.18 cpe:2.3:a:google:chrome:35.0.1916.18:*:*:*:*:*:*:*
google chrome 35.0.1916.19 cpe:2.3:a:google:chrome:35.0.1916.19:*:*:*:*:*:*:*
google chrome 35.0.1916.20 cpe:2.3:a:google:chrome:35.0.1916.20:*:*:*:*:*:*:*
google chrome 35.0.1916.21 cpe:2.3:a:google:chrome:35.0.1916.21:*:*:*:*:*:*:*
google chrome 35.0.1916.22 cpe:2.3:a:google:chrome:35.0.1916.22:*:*:*:*:*:*:*
google chrome 35.0.1916.23 cpe:2.3:a:google:chrome:35.0.1916.23:*:*:*:*:*:*:*
google chrome 35.0.1916.27 cpe:2.3:a:google:chrome:35.0.1916.27:*:*:*:*:*:*:*
google chrome 35.0.1916.31 cpe:2.3:a:google:chrome:35.0.1916.31:*:*:*:*:*:*:*
google chrome 35.0.1916.32 cpe:2.3:a:google:chrome:35.0.1916.32:*:*:*:*:*:*:*
google chrome 35.0.1916.33 cpe:2.3:a:google:chrome:35.0.1916.33:*:*:*:*:*:*:*
google chrome 35.0.1916.34 cpe:2.3:a:google:chrome:35.0.1916.34:*:*:*:*:*:*:*
google chrome 35.0.1916.35 cpe:2.3:a:google:chrome:35.0.1916.35:*:*:*:*:*:*:*
google chrome 35.0.1916.36 cpe:2.3:a:google:chrome:35.0.1916.36:*:*:*:*:*:*:*
google chrome 35.0.1916.37 cpe:2.3:a:google:chrome:35.0.1916.37:*:*:*:*:*:*:*
google chrome 35.0.1916.38 cpe:2.3:a:google:chrome:35.0.1916.38:*:*:*:*:*:*:*
google chrome 35.0.1916.39 cpe:2.3:a:google:chrome:35.0.1916.39:*:*:*:*:*:*:*
google chrome 35.0.1916.40 cpe:2.3:a:google:chrome:35.0.1916.40:*:*:*:*:*:*:*
google chrome 35.0.1916.41 cpe:2.3:a:google:chrome:35.0.1916.41:*:*:*:*:*:*:*
google chrome 35.0.1916.42 cpe:2.3:a:google:chrome:35.0.1916.42:*:*:*:*:*:*:*
google chrome 35.0.1916.43 cpe:2.3:a:google:chrome:35.0.1916.43:*:*:*:*:*:*:*
google chrome 35.0.1916.44 cpe:2.3:a:google:chrome:35.0.1916.44:*:*:*:*:*:*:*
google chrome 35.0.1916.45 cpe:2.3:a:google:chrome:35.0.1916.45:*:*:*:*:*:*:*
google chrome 35.0.1916.46 cpe:2.3:a:google:chrome:35.0.1916.46:*:*:*:*:*:*:*
google chrome 35.0.1916.47 cpe:2.3:a:google:chrome:35.0.1916.47:*:*:*:*:*:*:*
google chrome 35.0.1916.48 cpe:2.3:a:google:chrome:35.0.1916.48:*:*:*:*:*:*:*
google chrome 35.0.1916.49 cpe:2.3:a:google:chrome:35.0.1916.49:*:*:*:*:*:*:*
google chrome 35.0.1916.51 cpe:2.3:a:google:chrome:35.0.1916.51:*:*:*:*:*:*:*
google chrome 35.0.1916.52 cpe:2.3:a:google:chrome:35.0.1916.52:*:*:*:*:*:*:*
google chrome 35.0.1916.54 cpe:2.3:a:google:chrome:35.0.1916.54:*:*:*:*:*:*:*
google chrome 35.0.1916.56 cpe:2.3:a:google:chrome:35.0.1916.56:*:*:*:*:*:*:*
google chrome 35.0.1916.57 cpe:2.3:a:google:chrome:35.0.1916.57:*:*:*:*:*:*:*

CVE-2014-3152 的參考連結

cvelogic Threat Intelligence