Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2024-7976HistoryAug 21, 2024 - 9:15 p.m.
CVE-2024-7976
2024-08-2121:15:09
Debian Security Bug Tracker
security-tracker.debian.org
6
implementation
fedcm
google chrome
ui spoofing
html page
cve-2024-7976
chromium
medium severity
unix
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
AI Score
6.5
Confidence
High
EPSS
0.001
Percentile
17.8%
Inappropriate implementation in FedCM in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | chromium | < 128.0.6613.84-1~deb12u1 | chromium_128.0.6613.84-1~deb12u1_all.deb |
| Debian | 11 | all | chromium | <= 120.0.6099.224-1~deb11u1 | chromium_120.0.6099.224-1~deb11u1_all.deb |
| Debian | 999 | all | chromium | < 128.0.6613.84-1 | chromium_128.0.6613.84-1_all.deb |
| Debian | 13 | all | chromium | < 128.0.6613.84-1 | chromium_128.0.6613.84-1_all.deb |
Related
cvelist
cvelist
CVE-2024-7976
2024-08-21 20:20:25
mscve
mscve
Chromium: CVE-2024-7976 Inappropriate implementation in FedCM
2024-08-22 07:00:00
wolfi
wolfi
CVE-2024-7976 vulnerabilities
2024-09-19 21:18:36
vulnrichment
vulnrichment
CVE-2024-7976
2024-08-21 20:20:25
nvd
nvd
CVE-2024-7976
2024-08-21 21:15:09
osv
osv
CVE-2024-7976
2024-08-21 21:15:09
Security update for chromium
2024-08-23 09:15:52
Security update for chromium
2024-08-23 09:15:52
cve
cve
CVE-2024-7976
2024-08-21 21:15:09
chrome
chrome
Stable Channel Update for ChromeOS / ChromeOS Flex
2024-09-09 00:00:00
Stable Channel Update for Desktop
2024-08-21 00:00:00
nessus
nessus
Google Chrome < 128.0.6613.84 Multiple Vulnerabilities
2024-08-21 00:00:00
Google Chrome < 128.0.6613.84 Multiple Vulnerabilities
2024-08-21 00:00:00
Debian dsa-5757 : chromium - security update
2024-08-23 00:00:00
redos
redos
ROS-20240917-01
2024-09-17 00:00:00
openvas
openvas
openSUSE: Security Advisory for chromium (openSUSE-SU-2024:0258-1)
2024-08-24 00:00:00
Google Chrome Security Update (stable-channel-update-for-desktop_21-2024-08) - Mac OS X
2024-08-22 00:00:00
Debian: Security Advisory (DSA-5757-1)
2024-08-26 00:00:00
freebsd
freebsd
chromium -- multiple security fixes
2024-08-21 00:00:00
kaspersky
kaspersky
KLA71709 Multiple vulnerability in Google Chrome
2024-07-22 00:00:00
KLA71827 Multiple vulnerabilities in Microsoft Browser
2024-08-22 00:00:00
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
AI Score
6.5
Confidence
High
EPSS
0.001
Percentile
17.8%
Related for DEBIANCVE:CVE-2024-7976