Lucene search
ChromeCVE-2024-3173HistoryJul 16, 2024 - 11:15 p.m.
CVE-2024-3173
2024-07-1623:15:24
CWE-345
CWE-20
Chrome
web.nvd.nist.gov
47
organization individual security
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
6.2
Confidence
High
EPSS
0.001
Percentile
26.5%
Insufficient data validation in Updater in Google Chrome prior to 120.0.6099.62 allowed a remote attacker to perform OS-level privilege escalation via a malicious file. (Chromium security severity: High)
Affected configurations
Node
googlechromeRange<120.0.6099.62
CNA Affected
[
{
"vendor": "Google",
"product": "Chrome",
"versions": [
{
"version": "120.0.6099.62",
"status": "affected",
"lessThan": "120.0.6099.62",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2024-3173
2024-07-16 23:15:24
cvelist
cvelist
CVE-2024-3173
2024-07-16 22:14:03
debiancve
debiancve
CVE-2024-3173
2024-07-16 23:15:24
vulnrichment
vulnrichment
CVE-2024-3173
2024-07-16 22:14:03
osv
osv
CVE-2024-3173
2024-07-16 23:15:24
openvas
openvas
Debian: Security Advisory (DSA-5573-1)
2023-12-11 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2023-12-05 00:00:00
kaspersky
kaspersky
KLA62281 Multiple vulnerabilities in Google Chrome
2023-12-05 00:00:00
redos
redos
ROS-20240724-01
2024-07-24 00:00:00
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
6.2
Confidence
High
EPSS
0.001
Percentile
26.5%
Related for CVE-2024-3173