VDB
DEBIAN-CVE-2024-4671
DEBIAN-CVE-2024-4671
PUBLISHED
CVSS 9.600000381469727 CRITICAL
Use after free in Visuals in Google Chrome prior to 124.0.6367.201 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
Risk Scores
CVSS 3.1
9.600000381469727
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:11 | chromium | 138.0.7204.183-1, 128.0.6613.137-1, 128.0.6613.137-1 |
| Debian:13 | chromium | 0, 0 |
| Debian:14 | chromium | 0, 0 |
| Debian:12 | chromium | 114.0.5735.133-1, 114.0.5735.133-1~deb12u1, 114.0.5735.198-1 |
Exploit Intelligence
- cve_rules.hpp (github-poc)
- nvd_db.cpp (github-poc)
- kev.json (github-poc)
- data.js (github-poc)
- New-SyntheticTelemetry.ps1 (github-poc)
Timeline
- May 14, 2024 CVE Published
- Apr 28, 2026 CVE Updated