How severe is CVE-2024-3838?

CVE-2024-3838 has a CVSS v3 score of 5.5 (MEDIUM).

CVE-2024-3838

Name: chrome
Author: google

5.5MEDIUM

Inappropriate implementation in Autofill in Google Chrome prior to 124.0.6367.60 allowed an attacker who convinced a user to install a malicious app to perform UI spoofing via a crafted app. (Chromium

Publicado: 4/17/2024Actualizado: 11/21/2024

Descripción

Inappropriate implementation in Autofill in Google Chrome prior to 124.0.6367.60 allowed an attacker who convinced a user to install a malicious app to perform UI spoofing via a crafted app. (Chromium security severity: Medium)

Análisis IAImpulsado por IA

Productos Afectados

googlechrome

Referencias

https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.html
Vendor Advisory
https://issues.chromium.org/issues/328278717
Permissions Required
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO/
https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.html
Vendor Advisory
https://issues.chromium.org/issues/328278717
Permissions Required
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO/