Kaspersky LabKLA68998KLA68998 Multiple vulnerabilities in Google Chrome
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
22.0%
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service.
Below is a complete list of vulnerabilities:
- Use after free vulnerability in Dawn can be exploited to cause denial of service or execute arbitrary code.
- Inappropriate implementation vulnerability in WebAssembly can be exploited to cause denial of service.
- Out of bounds memory access vulnerability in Dawn can be exploited to cause denial of service.
- Type confusion vulnerability in V8 can be exploited to cause denial of service.
Original advisories
Stable Channel Update for Desktop
Related products
CVE list
CVE-2024-6103 unknown
CVE-2024-6101 unknown
CVE-2024-6102 unknown
CVE-2024-6100 unknown
KB list
- KB is Microsoft Knowledge Base article (In security case it corresponds Microsoft Security Advisory). KB is an atomic part of Microsoft security updates, which is detected by Microsoft Updater and can be installed or reverted. KB can contain not only programmatically updates and not only updates released by Microsoft.
Solution
Update to the latest version
Affected Products
- Google Chrome earlier thanΒ 126.0.6478.114
Related
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
22.0%