CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
41.9%
Qt qtwebengine-chromium repo reports:
Backports for 16 security bugs in Chromium:
CVE-2024-2625: Object lifecycle issue in V8
CVE-2024-2626: Out of bounds read in Swiftshader
CVE-2024-2885: Use after free in Dawn
CVE-2024-2887: Type Confusion in WebAssembly
CVE-2024-3157: Out of bounds write in Compositing
CVE-2024-3159: Out of bounds memory access in V8
CVE-2024-3516: Heap buffer overflow in ANGLE
CVE-2024-3837: Use after free in QUIC
CVE-2024-3839: Out of bounds read in Fonts
CVE-2024-3914: Use after free in V8
CVE-2024-3840: Insufficient policy enforcement in Site Isolation
CVE-2024-4058: Type Confusion in ANGLE
CVE-2024-4060: Use after free in Dawn
CVE-2024-4331: Use after free in Picture In Picture
CVE-2024-4368: Use after free in Dawn
CVE-2024-4671: Use after free in Visuals
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
FreeBSD | any | noarch | qt6-webengine | < 6.7.0 | UNKNOWN |
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
41.9%