How severe is CVE-2024-4671?

CVE-2024-4671 has a CVSS v3 score of 9.6 (CRITICAL).

CVE-2024-4671

Name: fedora
Author: fedoraproject

9.6CRITICAL

Use after free in Visuals in Google Chrome prior to 124.0.6367.201 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (

Publicado: 5/14/2024Actualizado: 10/24/2025

Vulnerabilidad Explotada Conocida (CISA)

Google Chromium Visuals contains a use-after-free vulnerability that allows a remote attacker to exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.

Acción Requerida:

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Fecha Límite:

2024-06-03

Descripción

Use after free in Visuals in Google Chrome prior to 124.0.6367.201 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

CVE-2024-4671

Use after free in Visuals in Google Chrome prior to 124.0.6367.201 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (

Vulnerabilidad Explotada Conocida (CISA)

Descripción

Análisis IAImpulsado por IA

Productos Afectados

Referencias