How severe is CVE-2024-4671?

CVE-2024-4671 has a CVSS v3 score of 9.6 (CRITICAL).

CVE-2024-4671

Name: fedora
Author: fedoraproject

9.6CRITICAL

Use after free in Visuals in Google Chrome prior to 124.0.6367.201 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (

Опубликовано: 5/14/2024Обновлено: 10/24/2025

Известная эксплуатируемая уязвимость CISA

Google Chromium Visuals contains a use-after-free vulnerability that allows a remote attacker to exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.

Требуемое действие:

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Срок:

2024-06-03

Описание

Use after free in Visuals in Google Chrome prior to 124.0.6367.201 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

CVE-2024-4671

Use after free in Visuals in Google Chrome prior to 124.0.6367.201 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (

Известная эксплуатируемая уязвимость CISA

Описание

ИИ-АнализНа базе ИИ

Затронутые продукты

Ссылки