Endpoint Vulnerability

Security Vulnerability CVE-2014-7930 for Google Chrome

Description

Use-after-free vulnerability in core/events/TreeScopeEventContext.cpp in the DOM implementation in Blink, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted JavaScript code that triggers improper maintenance of TreeScope data.

Affected Products

Google Chrome

References

CVE-2014-7930,