Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-4m4g-p795-cmq7

Опубликовано: 10 апр. 2024
Источник: github
Github: Не прошло ревью
CVSS3: 8.1

Описание

Out of bounds memory access in Compositing in Google Chrome prior to 123.0.6312.122 allowed a remote attacker who had compromised the GPU process to potentially perform a sandbox escape via specific UI gestures. (Chromium security severity: High)

Out of bounds memory access in Compositing in Google Chrome prior to 123.0.6312.122 allowed a remote attacker who had compromised the GPU process to potentially perform a sandbox escape via specific UI gestures. (Chromium security severity: High)

Ссылки

EPSS

Процентиль: 58%
0.00366
Низкий

8.1 High

CVSS3

CVE ID

CVE-2024-3157

Дефекты

CWE-787

Связанные уязвимости

ubuntu логотип

CVE-2024-3157

CVSS3: 9.6
ubuntu
около 1 года назад

Out of bounds memory access in Compositing in Google Chrome prior to 123.0.6312.122 allowed a remote attacker who had compromised the GPU process to potentially perform a sandbox escape via specific UI gestures. (Chromium security severity: High)

nvd логотип

CVE-2024-3157

CVSS3: 9.6
nvd
около 1 года назад

Out of bounds memory access in Compositing in Google Chrome prior to 123.0.6312.122 allowed a remote attacker who had compromised the GPU process to potentially perform a sandbox escape via specific UI gestures. (Chromium security severity: High)

msrc логотип

CVE-2024-3157

msrc
около 1 года назад

Chromium: CVE-2024-3157 Out of bounds write in Compositing

debian логотип

CVE-2024-3157

CVSS3: 9.6
debian
около 1 года назад

Out of bounds memory access in Compositing in Google Chrome prior to 1 ...

fstec логотип

BDU:2024-03187

CVSS3: 8.8
fstec
около 1 года назад

Уязвимость компонента Compositing браузеров Google Chrome и Microsoft Edge, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 58%
0.00366
Низкий

8.1 High

CVSS3

CVE ID

CVE-2024-3157

Дефекты

CWE-787