VDB
CVE-2024-5846
CVE-2024-5846
PUBLISHED
In Google Chrome existieren mehrere Schwachstellen in verschiedenen Komponenten, wie z.B. V8, Audio und PDFium. Zu den Ursachen zählen im Wesentlichen diverse Fehler in der Speicherverwaltung, aber auch Fehler in der Implementierung und der Durchsetzung von Policies. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um Code auszuführen, um einen Denial of Service Zustand herbeizuführen, um Sicherheitsmechanismen zu umgehen und potenziell weitere, nicht näher beschriebene Auswirkungen zu erzielen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich, wie beispielsweise das Laden einer speziell gestalteten Webseite.
EPSS 0.49% · 65.7th percentile
Risk Scores
EPSS Score
0.49%
65.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Opera | Opera Opera Browser | |
| Google Chrome <126.0.6478.56 | ||
| Google Chrome <126.0.6478.54 (Linux) | ||
| Fedora | Fedora Linux | |
| Debian | Debian Linux | |
| Google Chrome <126.0.6478.57 | ||
| SUSE | SUSE openSUSE |
Exploit Intelligence
- security_advisories.yml (github-poc)
- security_advisories.yml (github-poc)
- security_advisories.yml (github-poc)
- security_advisories.yml (github-poc)
- security_advisories.yml (github-poc)
- security_advisories.yml (github-poc)
- security_advisories.yml (github-poc)
- security_advisories.yml (github-poc)
Timeline
- Jun 11, 2024 CVE Published
- Jun 12, 2024 EPSS Score
- Jul 5, 2024 EPSS Score
- Jul 28, 2024 EPSS Score
- Sep 12, 2024 EPSS Score
- Oct 5, 2024 EPSS Score
- Oct 5, 2024 Coalition ESS Score
- Oct 28, 2024 EPSS Score
- Nov 20, 2024 EPSS Score
- Dec 14, 2024 EPSS Score
- Jan 6, 2025 EPSS Score
- Feb 13, 2025 CVE Updated
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1353.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1353 advisory
- https://chromereleases.googleblog.com/2024/06/stable-channel-update-for-desktop.html advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-6062617208 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-3be7c643a4 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2024-86e4115138 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2024-5acee8c47f advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-772a5fa32d advisory
- https://lists.debian.org/debian-security-announce/2024/msg00120.html advisory
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/M5T6NMGYYELQHJOU75BSCQDFQVQRR5I7/ advisory
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/M5T6NMGYYELQHJOU75BSCQDFQVQRR5I7/ advisory
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/NHZIGJFBH37236FBCT6ZIM4Q4SHU345J/ advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-89511748af advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-5ec6a4bb83 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2024-e60359f212 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2024-aaff7345b8 advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1377.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1377 advisory
- https://learn.microsoft.com/en-us/deployedge/microsoft-edge-relnotes-security#june-13-2024 advisory