Out-of-bounds read vulnerability in Array.prototype.concat implementation in Google V8

Out-of-bounds read vulnerability in Array.prototype.concat implementation in Google V8

CVE-2016-1646 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

The Array.prototype.concat implementation in builtins.cc in Google V8, as used in Google Chrome before 49.0.2623.108, does not properly consider element data types, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via crafted JavaScript code.

Learn more about our Cis Benchmark Audit For Google Chrome.