Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2024-3157

Опубликовано: 10 апр. 2024
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS3: 9.6

Описание

Out of bounds memory access in Compositing in Google Chrome prior to 123.0.6312.122 allowed a remote attacker who had compromised the GPU process to potentially perform a sandbox escape via specific UI gestures. (Chromium security severity: High)

РелизСтатусПримечание
devel

not-affected

code not present
esm-apps/noble

not-affected

code not present
esm-infra/focal

DNE

focal was not-affected [code not present]
focal

not-affected

code not present
jammy

not-affected

code not present
mantic

not-affected

code not present
noble

not-affected

code not present
upstream

released

Показывать по

Ссылки на источники

EPSS

Процентиль: 58%
0.00366
Низкий

9.6 Critical

CVSS3

Связанные уязвимости

nvd логотип

CVE-2024-3157

CVSS3: 9.6
nvd
около 1 года назад

Out of bounds memory access in Compositing in Google Chrome prior to 123.0.6312.122 allowed a remote attacker who had compromised the GPU process to potentially perform a sandbox escape via specific UI gestures. (Chromium security severity: High)

msrc логотип

CVE-2024-3157

msrc
около 1 года назад

Chromium: CVE-2024-3157 Out of bounds write in Compositing

debian логотип

CVE-2024-3157

CVSS3: 9.6
debian
около 1 года назад

Out of bounds memory access in Compositing in Google Chrome prior to 1 ...

github логотип

GHSA-4m4g-p795-cmq7

CVSS3: 8.1
github
около 1 года назад

Out of bounds memory access in Compositing in Google Chrome prior to 123.0.6312.122 allowed a remote attacker who had compromised the GPU process to potentially perform a sandbox escape via specific UI gestures. (Chromium security severity: High)

fstec логотип

BDU:2024-03187

CVSS3: 8.8
fstec
около 1 года назад

Уязвимость компонента Compositing браузеров Google Chrome и Microsoft Edge, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 58%
0.00366
Низкий

9.6 Critical

CVSS3