VDB
DEBIAN-CVE-2024-4558
DEBIAN-CVE-2024-4558
PUBLISHED
CVSS 9.600000381469727 CRITICAL
Use after free in ANGLE in Google Chrome prior to 124.0.6367.155 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Risk Scores
CVSS 3.1
9.600000381469727
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:11 | wpewebkit | 2.46.1-1, 2.44.4-1, 2.44.3-1 |
| Debian:12 | chromium | 122.0.6261.94-1, 123.0.6312.105-1, 123.0.6312.105-1~deb12u1 |
| Debian:14 | wpewebkit | 0, 0 |
| Debian:12 | webkit2gtk | 2.42.5-1, 2.42.5-1, 2.42.5-2 |
| Debian:11 | chromium | 114.0.5735.90-2, 115.0.5790.102-1, 115.0.5790.102-2 |
| Debian:14 | webkit2gtk | 0, 0 |
| Debian:13 | wpewebkit | 0, 0 |
| Debian:13 | chromium | 0, 0 |
| Debian:12 | wpewebkit | 2.40.1-1, 2.40.2-1, 2.38.6-1 |
| Debian:14 | chromium | 0, 0 |
| Debian:13 | webkit2gtk | 0, 0 |
| Debian:11 | webkit2gtk | 2.42.4-1~deb11u1, 2.42.4-1~deb12u1, 2.42.5-1 |
Exploit Intelligence
- macos_v2_generated.go (github-poc)
- macos_v1_generated.go (github-poc)
- ios_v2_generated.go (github-poc)
- ios_v1_generated.go (github-poc)
- safari_v2_generated.go (github-poc)
Timeline
- May 7, 2024 CVE Published
- Apr 28, 2026 CVE Updated