How severe is CVE-2024-4671?

CVE-2024-4671 has a CVSS v3 score of 9.6 (CRITICAL).

CVE-2024-4671

Name: fedora
Author: fedoraproject

9.6CRITICAL

Use after free in Visuals in Google Chrome prior to 124.0.6367.201 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (

公開日: 5/14/2024更新日: 10/24/2025

CISA既知の悪用された脆弱性

Google Chromium Visuals contains a use-after-free vulnerability that allows a remote attacker to exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.

必要な対応:

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

期限:

2024-06-03

説明

Use after free in Visuals in Google Chrome prior to 124.0.6367.201 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

CVE-2024-4671

Use after free in Visuals in Google Chrome prior to 124.0.6367.201 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (

CISA既知の悪用された脆弱性

説明

AI分析AIによる分析

影響を受ける製品

参照