Lucene search
GoogleOSV:CVE-2024-3170HistoryJul 16, 2024 - 11:15 p.m.
CVE-2024-3170
2024-07-1623:15:23
Google
osv.dev
3
webrtc
google chrome
vulnerability
heap corruption
html page
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
7
Confidence
High
EPSS
0.001
Percentile
26.7%
Use after free in WebRTC in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Related
cve
cve
CVE-2024-3170
2024-07-16 23:15:23
cvelist
cvelist
CVE-2024-3170
2024-07-16 22:14:02
debiancve
debiancve
CVE-2024-3170
2024-07-16 23:15:23
nvd
nvd
CVE-2024-3170
2024-07-16 23:15:23
vulnrichment
vulnrichment
CVE-2024-3170
2024-07-16 22:14:02
redos
redos
ROS-20240724-01
2024-07-24 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-5607-1)
2024-01-25 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2024-01-23 00:00:00
kaspersky
kaspersky
KLA63323 Multiple vulnerabilities in Google Chrome
2024-01-23 00:00:00
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
7
Confidence
High
EPSS
0.001
Percentile
26.7%
Related for OSV:CVE-2024-3170