CVE-2014-4123

ENISA EUVD: EUVD-2014-4054 ↗

Exploited in the Wild ✓ Confirmed 0-Day ★ Google Project Zero

Triaged: March 5, 2026

VulnLookup ↗ NVD ↗ EUVD ↗ MITRE ↗ Advisory ↗ P0 Sheet ↗ CISA KEV ↗

EPSS Score

Source: FIRST.org · 2026-05-24

50.63%

probability

This CVE has a 50.63% probability of being exploited in the next 30 days.

0% Top 97.9th percentile of all CVEs 100%

CVSS v3.1

Source: NVD

8.8

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Description

Project Zero

Unspecified sandbox escape vulnerability

Affected Products

Google Project Zero

Patched

Oct. 14, 2014

Reported by

James Forshaw of Context Information Security

Root Cause Analysis

???

Signal Intelligence

Confidenceⓘ

95%

EPSS 50.63%

CVSS v3.1 8.8

Mentions 0

CNA Information

Analyst Note

Auto-imported from Google Project Zero — confirmed zero-day by definition.

Triage Info

Decided atMar 05, 2026