CVE-2024-4558

Опубликовано: 07 мая 2024

Источник: redhat

CVSS3: 7

EPSS Низкий

Описание

Use after free in ANGLE in Google Chrome prior to 124.0.6367.155 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 7	webkitgtk3	Out of support scope
Red Hat Enterprise Linux 7	webkitgtk4	Out of support scope
Red Hat Enterprise Linux 8	webkit2gtk3	Fixed	RHSA-2024:9636	14.11.2024
Red Hat Enterprise Linux 8.2 Advanced Update Support	webkit2gtk3	Fixed	RHSA-2024:9680	14.11.2024
Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support	webkit2gtk3	Fixed	RHSA-2024:9679	14.11.2024
Red Hat Enterprise Linux 8.4 Telecommunications Update Service	webkit2gtk3	Fixed	RHSA-2024:9679	14.11.2024
Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions	webkit2gtk3	Fixed	RHSA-2024:9679	14.11.2024
Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support	webkit2gtk3	Fixed	RHSA-2024:9653	14.11.2024
Red Hat Enterprise Linux 8.6 Telecommunications Update Service	webkit2gtk3	Fixed	RHSA-2024:9653	14.11.2024
Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions	webkit2gtk3	Fixed	RHSA-2024:9653	14.11.2024

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important

Дефект:

CWE-416

https://bugzilla.redhat.com/show_bug.cgi?id=2279689chromium-browser: Use after free in ANGLE

EPSS

Процентиль: 80%

0.01413

Низкий

7 High

CVSS3

Связанные уязвимости

CVE-2024-4558

CVSS3: 9.6

ubuntu

около 1 года назад

Use after free in ANGLE in Google Chrome prior to 124.0.6367.155 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

CVE-2024-4558

CVSS3: 9.6

nvd

около 1 года назад

Use after free in ANGLE in Google Chrome prior to 124.0.6367.155 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

CVE-2024-4558

msrc

около 1 года назад

Chromium: CVE-2024-4558 Use after free in ANGLE

CVE-2024-4558

CVSS3: 9.6

debian

около 1 года назад

Use after free in ANGLE in Google Chrome prior to 124.0.6367.155 allow ...

GHSA-r4j8-j63p-24j8

CVSS3: 7.5

github

около 1 года назад

Use after free in ANGLE in Google Chrome prior to 124.0.6367.155 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

EPSS

Процентиль: 80%

0.01413

Низкий

7 High

CVSS3