CVE-2024-3168 — Vulnetix

CVE-2024-3168 PUBLISHED CVSS 8.800000190734863 HIGH

Use after free in DevTools in Google Chrome prior to 122.0.6261.57 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

EPSS 1.30% · 80.0th percentile

Risk Scores

CVSS v3.1

8.800000190734863

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS Score

1.30%

80.0th percentile

Affected Products

Vendor	Product	Versions
google	chrome	0
google	chrome	0
Google	Chrome	122.0.6261.57

Timeline

Jul 16, 2024 CVE Published
Jul 17, 2024 EPSS Score
Aug 8, 2024 EPSS Score
Aug 29, 2024 EPSS Score
Oct 4, 2024 Coalition ESS Score
Oct 12, 2024 EPSS Score
Nov 3, 2024 EPSS Score
Nov 24, 2024 EPSS Score
Dec 17, 2024 EPSS Score
Jan 8, 2025 EPSS Score
Jan 30, 2025 EPSS Score
Mar 13, 2025 CVE Updated

References

https://chromereleases.googleblog.com/2024/02/stable-channel-update-for-desktop_20.html url
https://issues.chromium.org/issues/323813642 url
https://nvd.nist.gov/vuln/detail/CVE-2024-3168 advisory

Open in Interactive Console →