CNVD-2024-16937 — Vulnetix

CNVD-2024-16937 PUBLISHED CVSS 8.800000190734863 HIGH

Google Chrome是美国谷歌（Google）公司的一款Web浏览器。 Google Chrome存在代码执行漏洞，该漏洞是由于在Accessibility中免费使用造成的。攻击者可利用此漏洞在系统上执行任意代码。

Risk Scores

CVSS 3.1

8.800000190734863

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Products

Vendor	Product	Versions
Google	Chrome	122.0.6261.57
google	chrome	0

Exploit Intelligence

https://chromereleases.googleblog.com/2024/02/stable-channel-update-for-desktop_20.html (circl)
https://issues.chromium.org/issues/41490491 (circl)
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QDCMYQ3J45NHQ4EJREM3BJNNKB5BK4Y7/ (circl)
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PWWBMVQTSERVBXSXCZVUKIMEDNQUQ7O3/ (circl)
CIRCL seen: CVE-2024-1673 (circl-sighting)
CIRCL seen: CVE-2024-1673 (circl-sighting)
CIRCL seen: CVE-2024-1673 (circl-sighting)
CIRCL seen: CVE-2024-1673 (circl-sighting)
CIRCL seen: CVE-2024-1673 (circl-sighting)

Timeline

Feb 20, 2024 CVE Published
Feb 21, 2024 PoC Published
Feb 21, 2024 PoC Published
Feb 22, 2024 PoC Published
Feb 23, 2024 PoC Published
Mar 8, 2024 PoC Published

References

Open in Interactive Console →

$ Console Community · 100/wk Open console ›