How severe is CVE-2024-4671?

CVE-2024-4671 has a CVSS v3 score of 9.6 (CRITICAL).

CVE-2024-4671

Name: fedora
Author: fedoraproject

9.6CRITICAL

Use after free in Visuals in Google Chrome prior to 124.0.6367.201 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (

Publicado: 5/14/2024Atualizado: 10/24/2025

Vulnerabilidade Explorada Conhecida (CISA)

Google Chromium Visuals contains a use-after-free vulnerability that allows a remote attacker to exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.

Ação Necessária:

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Prazo:

2024-06-03

Descrição

Use after free in Visuals in Google Chrome prior to 124.0.6367.201 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

CVE-2024-4671

Use after free in Visuals in Google Chrome prior to 124.0.6367.201 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (

Vulnerabilidade Explorada Conhecida (CISA)

Descrição

Análise IADesenvolvido por IA

Produtos Afetados

Referências