CVE-2024-9958

Опубликовано: 15 окт. 2024

Источник: debian

EPSS Низкий

Описание

Inappropriate implementation in PictureInPicture in Google Chrome prior to 130.0.6723.58 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
chromium	fixed	130.0.6723.58-1		package
chromium	end-of-life		bullseye	package

EPSS

Процентиль: 21%

0.00067

Низкий

Связанные уязвимости

CVE-2024-9958

CVSS3: 4.3

ubuntu

8 месяцев назад

Inappropriate implementation in PictureInPicture in Google Chrome prior to 130.0.6723.58 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

CVE-2024-9958

CVSS3: 4.3

nvd

8 месяцев назад

Inappropriate implementation in PictureInPicture in Google Chrome prior to 130.0.6723.58 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

CVE-2024-9958

msrc

8 месяцев назад

Chromium: CVE-2024-9958 Inappropriate implementation in PictureInPicture

GHSA-f8jx-5r24-p453

CVSS3: 4.3

github

8 месяцев назад

Inappropriate implementation in PictureInPicture in Google Chrome prior to 130.0.6723.58 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

BDU:2024-08344

CVSS3: 4.3

fstec

больше 1 года назад

Уязвимость компонента PictureInPicture браузеров Google Chrome и Microsoft Edge, позволяющая нарушителю проводить спуфинг-атаки

EPSS

Процентиль: 21%

0.00067

Низкий