Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2024-7965

Опубликовано: 21 авг. 2024
Источник: redhat
CVSS3: 8.8
EPSS Средний

Описание

Inappropriate implementation in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

An inappropriate implementation vulnerability was found in the Chromium web browser. This flaw allows an unauthenticated, remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.

Отчет

Chromium is not shipped in any supported Red Hat offerings.

Меры по смягчению последствий

Until updated packages are released for Fedora and EPEL, consider temporarily swapping to an alternative web browser such as Firefox or severely restricting activity to sites you know well and trust.

Ссылки на источники

Дополнительная информация

Статус:

Important
Дефект:
CWE-1068
https://bugzilla.redhat.com/show_bug.cgi?id=2307087chromium-browser: Inappropriate implementation in V8 in Google Chrome allows a remote attacker to potentially exploit heap corruption

EPSS

Процентиль: 94%
0.12837
Средний

8.8 High

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2024-7965

CVSS3: 8.8
ubuntu
10 месяцев назад

Inappropriate implementation in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

nvd логотип

CVE-2024-7965

CVSS3: 8.8
nvd
10 месяцев назад

Inappropriate implementation in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

msrc логотип

CVE-2024-7965

msrc
10 месяцев назад

Chromium: CVE-2024-7965 Inappropriate implementation in V8

debian логотип

CVE-2024-7965

CVSS3: 8.8
debian
10 месяцев назад

Inappropriate implementation in V8 in Google Chrome prior to 128.0.661 ...

github логотип

GHSA-x38q-hvmx-rwhg

CVSS3: 8.8
github
10 месяцев назад

Inappropriate implementation in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

EPSS

Процентиль: 94%
0.12837
Средний

8.8 High

CVSS3

Уязвимость CVE-2024-7965