VDB
CVE-2024-12053
CVE-2024-12053
PUBLISHED
Es besteht eine Schwachstelle in Google Chrome / Microsoft Edge. Dieser Fehler existiert in der V8-Komponente wegen einer Typverwechslung, die es erlaubt, eine Objektbeschädigung über eine manipulierte HTML-Seite durchzuführen. Ein entfernter, anonymer Angreifer kann diese Schwachstelle zur Ausführung von beliebigem Code ausnutzen. Zur erfolgreichen Ausnutzung ist eine Benutzerinteraktion erforderlich.
EPSS 0.09% · 25.0th percentile
Risk Scores
EPSS Score
0.09%
25.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian | Debian Linux | |
| Google Chrome <131.0.6778.109 | ||
| Fedora | Fedora Linux | |
| SUSE | SUSE openSUSE | |
| Google Chrome <131.0.6778.108 | ||
| Microsoft | Microsoft Edge <131.0.2903.86 |
Exploit Intelligence
- CIRCL seen: CVE-2024-12053 (circl-sighting)
- CIRCL seen: CVE-2024-12053 (circl-sighting)
- CIRCL seen: CVE-2024-12053 (circl-sighting)
- CIRCL seen: CVE-2024-12053 (circl-sighting)
- CIRCL seen: CVE-2024-12053 (circl-sighting)
- CIRCL seen: CVE-2024-12053 (circl-sighting)
- CIRCL seen: CVE-2024-12053 (circl-sighting)
- CIRCL seen: CVE-2024-12053 (circl-sighting)
- CIRCL seen: CVE-2024-12053 (circl-sighting)
- https://chromereleases.googleblog.com/2024/12/stable-channel-update-for-desktop.html (circl)
…and 1 more exploits
Timeline
- Dec 3, 2024 CVE Published
- Dec 3, 2024 PoC Published
- Dec 3, 2024 PoC Published
- Dec 3, 2024 PoC Published
- Dec 3, 2024 PoC Published
- Dec 4, 2024 EPSS Score
- Dec 6, 2024 PoC Published
- Dec 10, 2024 PoC Published
- Dec 11, 2024 PoC Published
- Dec 21, 2024 EPSS Score
- Jan 7, 2025 EPSS Score
- Jan 24, 2025 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3585.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3585 advisory
- https://chromereleases.googleblog.com/2024/12/stable-channel-update-for-desktop.html advisory
- https://github.com/advisories/GHSA-wvx7-72hc-rp32 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2024-791faa660a advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-3ed223d8ce advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-60aa72a3e6 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2024-35cc1d9ec0 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-18733ad580 advisory
- https://learn.microsoft.com/en-us/deployedge/microsoft-edge-relnotes-security#december-5-2024 advisory
- https://lists.debian.org/debian-security-announce/2024/msg00240.html advisory
- https://security-tracker.debian.org/tracker/DSA-5824-1 advisory
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/7FBR2DIAPAQEI75DEZFG3I4VLL5MG4LK/ advisory
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/MY4OWMSB2PYQKNUUAPGBJASRRX47GPPD/ advisory