Lucene search
ChromeCVE-2024-7536HistoryAug 06, 2024 - 9:16 p.m.
CVE-2024-7536
2024-08-0621:16:04
CWE-416
Chrome
web.nvd.nist.gov
20
vulnerability
google chrome
webaudio
heap corruption
crafted html page
remote attacker
chromium security
high severity
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
7.1
Confidence
High
EPSS
0.001
Percentile
26.9%
Use after free in WebAudio in Google Chrome prior to 127.0.6533.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Affected configurations
Node
googlechromeRange<127.0.6533.99
CNA Affected
[
{
"vendor": "Google",
"product": "Chrome",
"versions": [
{
"version": "127.0.6533.99",
"status": "affected",
"lessThan": "127.0.6533.99",
"versionType": "custom"
}
]
}
]Related
cvelist
cvelist
CVE-2024-7536
2024-08-06 20:19:03
nvd
nvd
CVE-2024-7536
2024-08-06 21:16:04
debiancve
debiancve
CVE-2024-7536
2024-08-06 21:16:04
osv
osv
CVE-2024-7536
2024-08-06 21:16:04
chromium - security update
2024-08-08 00:00:00
Security update for chromium, gn, rust-bindgen
2024-08-18 22:20:17
wolfi
wolfi
CVE-2024-7536 vulnerabilities
2024-09-19 09:11:50
vulnrichment
vulnrichment
CVE-2024-7536
2024-08-06 20:19:03
ubuntucve
ubuntucve
CVE-2024-7536
2024-08-06 00:00:00
alpinelinux
alpinelinux
CVE-2024-7536
2024-08-06 21:16:04
mscve
mscve
Chromium: CVE-2024-7536 Use after free in WebAudio
2024-08-08 15:53:52
Chromium: CVE-2024-7550 Type Confusion in V8
2024-08-08 15:53:53
nessus
nessus
FreeBSD : chromium -- multiple security fixes (05cd9f82-5426-11ef-8a0f-a8a1599412c6)
2024-08-07 00:00:00
Debian dsa-5741 : chromium - security update
2024-08-08 00:00:00
Google Chrome < 127.0.6533.99 Multiple Vulnerabilities
2024-08-06 00:00:00
redos
redos
ROS-20240815-08
2024-08-15 00:00:00
freebsd
freebsd
chromium -- multiple security fixes
2024-08-06 00:00:00
qt5-webengine -- Multiple vulnerabilities
2024-08-05 00:00:00
openvas
openvas
Google Chrome Security Update (stable-channel-update-for-desktop-2024-08) - Linux
2024-08-07 00:00:00
Debian: Security Advisory (DSA-5741-1)
2024-08-09 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2024-08-06 00:00:00
kaspersky
kaspersky
KLA71396 Multiple vulnerabilities in Google Chrome
2024-08-06 00:00:00
KLA71454 Multiple vulnerabilities in Microsoft Browser
2024-08-08 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: chromium-127.0.6533.99-1.fc39
2024-08-12 04:59:43
[SECURITY] Fedora 40 Update: chromium-127.0.6533.99-1.fc40
2024-08-14 06:26:34
[SECURITY] Fedora 39 Update: chromium-128.0.6613.119-1.fc39
2024-09-09 00:45:05
rapid7blog
rapid7blog
Patch Tuesday - August 2024
2024-08-13 23:36:30
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
7.1
Confidence
High
EPSS
0.001
Percentile
26.9%
Related for CVE-2024-7536