How severe is CVE-2024-0808?

CVE-2024-0808 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2024-0808

9.8CRITICAL

Integer underflow in WebUI in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to potentially exploit heap corruption via a malicious file. (Chromium security severity: High)

公開日: 1/24/2024更新日: 5/30/2025

説明

Integer underflow in WebUI in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to potentially exploit heap corruption via a malicious file. (Chromium security severity: High)

AI分析AIによる分析

影響を受ける製品

debiandebian_linux

11.0

googlechrome

fedoraprojectfedora

参照

https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_23.html
Release NotesVendor Advisory
https://crbug.com/1504936
Permissions Required
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ/
Mailing ListThird Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC/
Mailing ListThird Party Advisory
https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_23.html
Release NotesVendor Advisory
https://crbug.com/1504936
Permissions Required
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ/
Mailing ListThird Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC/
Mailing ListThird Party Advisory