VDB
CISA-2024-6997
CISA-2024-6997
PUBLISHED
CVSS 8.8 HIGH
Reported by Chrome · Published August 6, 2024
Use after free in Tabs in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)
Risk Scores
CVSS 3.1
8.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Chrome | 127.0.6533.72 | |
| chrome | 0, 0 | |
| Chrome | 127.0.6533.72, 127.0.6533.72 |
Timeline
- Aug 6, 2024 CVE Published
- Aug 13, 2024 CVE Updated