Out-of-bounds read vulnerability in Array.prototype.concat implementation in Google V8
CVE-2016-1646 · HIGH Severity
AV:N/AC:M/AU:N/C:C/I:C/A:C
The Array.prototype.concat implementation in builtins.cc in Google V8, as used in Google Chrome before 49.0.2623.108, does not properly consider element data types, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via crafted JavaScript code.
Learn more about our Cis Benchmark Audit For Google Chrome.