VDB
DEBIAN-CVE-2024-3838
DEBIAN-CVE-2024-3838
PUBLISHED
CVSS 5.5 MEDIUM
Inappropriate implementation in Autofill in Google Chrome prior to 124.0.6367.60 allowed an attacker who convinced a user to install a malicious app to perform UI spoofing via a crafted app. (Chromium security severity: Medium)
Risk Scores
CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:11 | chromium | 136.0.7103.113-1, 131.0.6778.108-1, 131.0.6778.108-1 |
| Debian:12 | chromium | 0, 114.0.5735.106-1, 114.0.5735.106-1~deb12u1 |
| Debian:13 | chromium | 0, 0 |
| Debian:14 | chromium | 0, 0 |
Timeline
- Apr 17, 2024 CVE Published
- Apr 28, 2026 CVE Updated