Lucene search
ChromeCVE-2024-8905HistorySep 17, 2024 - 9:15 p.m.
CVE-2024-8905
2024-09-1721:15:13
CWE-122
Chrome
web.nvd.nist.gov
12
20
google chrome
v8
remote attacker
stack corruption
crafted html page
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
6.5
Confidence
High
EPSS
0
Percentile
9.6%
Inappropriate implementation in V8 in Google Chrome prior to 129.0.6668.58 allowed a remote attacker to potentially exploit stack corruption via a crafted HTML page. (Chromium security severity: Medium)
Affected configurations
Node
googlechromeRange<129.0.6668.58
CNA Affected
[
{
"vendor": "Google",
"product": "Chrome",
"versions": [
{
"version": "129.0.6668.58",
"status": "affected",
"lessThan": "129.0.6668.58",
"versionType": "custom"
}
]
}
]References
Social References
More
Related
cvelist
cvelist
CVE-2024-8905
2024-09-17 21:07:18
nvd
nvd
CVE-2024-8905
2024-09-17 21:15:13
debiancve
debiancve
CVE-2024-8905
2024-09-17 21:15:13
vulnrichment
vulnrichment
CVE-2024-8905
2024-09-17 21:07:18
osv
osv
CVE-2024-8905
2024-09-17 21:15:13
alpinelinux
alpinelinux
CVE-2024-8905
2024-09-17 21:15:13
mscve
mscve
Chromium: CVE-2024-8905 Inappropriate implementation in V8
2024-09-19 14:11:53
nessus
nessus
Google Chrome < 129.0.6668.58 Multiple Vulnerabilities
2024-09-17 00:00:00
Google Chrome < 129.0.6668.58 Multiple Vulnerabilities
2024-09-17 00:00:00
kaspersky
kaspersky
KLA73437 Multiple vulnerabilities in Google Chrome
2024-09-17 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2024-09-17 00:00:00
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
6.5
Confidence
High
EPSS
0
Percentile
9.6%
Related for CVE-2024-8905