CVE-2024-10827

Опубликовано: 06 нояб. 2024

Источник: debian

EPSS Низкий

Описание

Use after free in Serial in Google Chrome prior to 130.0.6723.116 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
chromium	fixed	130.0.6723.116-1		package
chromium	end-of-life		bullseye	package

EPSS

Процентиль: 68%

0.0059

Низкий

Связанные уязвимости

CVE-2024-10827

CVSS3: 8.8

ubuntu

8 месяцев назад

Use after free in Serial in Google Chrome prior to 130.0.6723.116 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

CVE-2024-10827

CVSS3: 8.8

nvd

8 месяцев назад

Use after free in Serial in Google Chrome prior to 130.0.6723.116 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

CVE-2024-10827

msrc

8 месяцев назад

Chromium: CVE-2024-10827 Use after free in Serial

GHSA-58wv-w3hc-2c76

CVSS3: 8.8

github

8 месяцев назад

Use after free in Serial in Google Chrome prior to 130.0.6723.116 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

BDU:2024-10647

CVSS3: 8.8

fstec

8 месяцев назад

Уязвимость компонента Serial браузеров Microsoft Edge и Google Chrome, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 68%

0.0059

Низкий