CNVD-2024-13762 — Vulnetix

CNVD-2024-13762 PUBLISHED CVSS 6.5 MEDIUM

Google Chrome是美国谷歌（Google）公司的一款Web浏览器。 Google Chrome存在安全绕过漏洞，该漏洞是由于站点隔离中的不适当实施造成的。攻击者可利用此漏洞绕过安全限制。

Risk Scores

CVSS 3.1

6.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Affected Products

Vendor	Product	Versions
Google	Chrome	122.0.6261.57

Exploit Intelligence

https://chromereleases.googleblog.com/2024/02/stable-channel-update-for-desktop_20.html (circl)
https://issues.chromium.org/issues/41487933 (circl)
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QDCMYQ3J45NHQ4EJREM3BJNNKB5BK4Y7/ (circl)
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PWWBMVQTSERVBXSXCZVUKIMEDNQUQ7O3/ (circl)
CIRCL seen: CVE-2024-1671 (circl-sighting)
CIRCL seen: CVE-2024-1671 (circl-sighting)
CIRCL seen: CVE-2024-1671 (circl-sighting)
CIRCL seen: CVE-2024-1671 (circl-sighting)
CIRCL seen: CVE-2024-1671 (circl-sighting)

Timeline

Feb 20, 2024 CVE Published
Feb 21, 2024 PoC Published
Feb 21, 2024 PoC Published
Feb 22, 2024 PoC Published
Feb 23, 2024 PoC Published
Mar 8, 2024 PoC Published

References

Open in Interactive Console →

$ Console Community · 100/wk Open console ›