Google Chrome < 124.0.6367.201 Vulnerability

The version of Google Chrome installed on the remote Windows host is prior to 124.0.6367.201. It is, therefore, affected by a vulnerability as referenced in the 202405stable-channel-update-for-desktop9 advisory. - Use after free in Visuals in Google Chrome prior to 124.0.6367.201 allowed a remote...

Vulnerability fixed in Google Chrome

Google has fixed a vulnerability in Chrome. The vulnerability is located in the Visuals component, and a malicious party can exploit the exploit the vulnerability to execute arbitrary code in the context of the browser, or to cause a Denial-of-Service DoS cause. Google reports being aware that...

The vulnerability of the Visuals component in the Google Chrome browser allows a hacker to execute arbitrary code.

The vulnerability of Google Chrome’s Visuals component relates to the ability to utilize memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code, provided that the user opens a specially crafted web page...

Fedora 40 : chromium (2024-5f84678c08)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-5f84678c08 advisory. update to 124.0.6367.201 High CVE-2024-4671: Use after free in Visuals Tenable has extracted the preceding description block directly from the Fedor...

Fedora 39 : chromium (2024-1bc17d6ec7)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-1bc17d6ec7 advisory. update to 124.0.6367.201 High CVE-2024-4671: Use after free in Visuals Tenable has extracted the preceding description block directly from the Fedor...

Chromium: CVE-2024-4671 Use after free in Visuals

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. Google is aware that an exploit for CVE-2024-4671 exists in the wild...

Microsoft Edge (Chromium) < 124.0.2478.97 Multiple Vulnerabilities

The version of Microsoft Edge installed on the remote Windows host is prior to 124.0.2478.97. It is, therefore, affected by multiple vulnerabilities as referenced in the May 10, 2024 advisory. - Microsoft Edge Chromium-based Spoofing Vulnerability CVE-2024-30055 - Use after free in ANGLE in Googl...

CVE-2024-4671

Use after free in Visuals in Google Chrome prior to 124.0.6367.201 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

CVE-2024-4671

Use after free in Visuals in Google Chrome prior to 124.0.6367.201 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

CVE-2024-4671

CVE-2024-4671 is a use-after-free vulnerability in Google Chrome’s Visuals component, reported in Chromium-based builds prior to 124.0.6367.201. The issue could allow a remote attacker who has compromised the renderer process to escape the sandbox via a crafted HTML page, with high impact and in-...

CVE-2024-4671

Use after free in Visuals in Google Chrome prior to 124.0.6367.201 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

CVE-2024-4671

Use after free in Visuals in Google Chrome prior to 124.0.6367.201 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

Google Chrome 安全漏洞

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a memory misreference vulnerability that is due to free usage in Visuals. An attacker can exploit this vulnerability to execute arbitrary code on a system...

Stable Channel Update for Desktop

The Stable channel has been updated to 124.0.6367.201/.202 for Mac and Windows and 124.0.6367.201 for Linux which will roll out over the coming days/weeks. A full list of changes in this build is available in the Log. The Extended Stable channel has been updated to 124.0.6367.201 for Mac and...

chromium -- multiple security fixes

Chrome Releases reports: This update includes 1 security fix: 339266700 High CVE-2024-4671: Use after free in Visuals. Reported by Anonymous on 2024-05-07...

VulnCheck KEV: CVE-2024-4671

Google Chromium Visuals contains a use-after-free vulnerability that allows a remote attacker to exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera...

qt6-webengine -- Multiple vulnerabilities

Qt qtwebengine-chromium repo reports: Backports for 16 security bugs in Chromium: CVE-2024-2625: Object lifecycle issue in V8 CVE-2024-2626: Out of bounds read in Swiftshader CVE-2024-2885: Use after free in Dawn CVE-2024-2887: Type Confusion in WebAssembly CVE-2024-3157: Out of bounds write in...

Expanded Coverage and New Attack Path Visualizations Help Security Teams Prioritize Cloud Risk and Understand Blast Radius

Cloud environments differ in a number of ways from more traditional on-prem environments. From the immense scale and compounding complexity to the rate of change, the cloud creates a host of challenges for security teams to navigate and grapple with. By definition, anything running in the cloud h...

The vulnerability of Google Chrome’s Visuals component allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of Google Chrome’s Visuals component is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause a service denial-of-service by loading a specially created malicious web page...

Chromium: CVE-2023-4071 Heap buffer overflow in Visuals

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...