Lucene search
Ubuntu.comUB:CVE-2024-0225HistoryJan 04, 2024 - 12:00 a.m.
CVE-2024-0225
2024-01-0400:00:00
ubuntu.com
ubuntu.com
15
google chrome
webgpu
remote code execution
html page
cve-2024-0225
heap corruption
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
7.1
Confidence
High
EPSS
0.001
Percentile
43.6%
Use after free in WebGPU in Google Chrome prior to 120.0.6099.199 allowed a
remote attacker to potentially exploit heap corruption via a crafted HTML
page. (Chromium security severity: High)
Notes
| Author | Note |
|---|---|
| alexmurray | The Debian chromium source package is called chromium-browser in Ubuntu |
| mdeslaur | starting with Ubuntu 19.10, the chromium-browser package is just a script that installs the Chromium snap |
Related
cve
cve
CVE-2024-0225
2024-01-04 02:15:29
cvelist
cvelist
CVE-2024-0225
2024-01-04 01:56:14
debiancve
debiancve
CVE-2024-0225
2024-01-04 02:15:29
prion
prion
Design/Logic Flaw
2024-01-04 02:15:00
mscve
mscve
Chromium: CVE-2024-0225 Use after free in WebGPU
2024-01-05 17:08:32
nvd
nvd
CVE-2024-0225
2024-01-04 02:15:29
veracode
veracode
Out-of-bounds Write
2024-01-13 07:25:50
alpinelinux
alpinelinux
CVE-2024-0225
2024-01-04 02:15:29
osv
osv
CVE-2024-0225
2024-01-04 02:15:29
chromium - security update
2024-01-04 00:00:00
ungoogled-chromium-120.0.6099.216-1.1 on GA media
2024-06-15 00:00:00
freebsd
freebsd
electron{26,27} -- multiple vulnerabilities
2024-01-10 00:00:00
chromium -- multiple security fixes
2024-01-03 00:00:00
qt6-webengine -- Multiple vulnerabilities
2024-01-08 00:00:00
debian
debian
[SECURITY] [DSA 5595-1] chromium security update
2024-01-04 19:06:13
nessus
nessus
Microsoft Edge (Chromium) < 120.0.2210.121 Multiple Vulnerabilities
2024-01-05 00:00:00
Google Chrome < 120.0.6099.199 Multiple Vulnerabilities
2024-01-03 00:00:00
Google Chrome < 120.0.6099.199 Multiple Vulnerabilities
2024-01-03 00:00:00
kaspersky
kaspersky
KLA62770 Multiple vulnerabilities in Opera
2024-01-05 00:00:00
KLA62766 Multiple vulnerabilities in Google Chrome
2024-01-03 00:00:00
KLA62769 Multiple vulnerabilities in Microsoft Browser
2024-01-05 00:00:00
openvas
openvas
chrome
chrome
Stable Channel Update for Desktop
2024-01-03 00:00:00
mageia
mageia
Updated chromium-browser-stable packages fix security vulnerabilities
2024-01-15 01:23:43
fedora
fedora
[SECURITY] Fedora 38 Update: chromium-120.0.6099.199-1.fc38
2024-01-07 00:42:41
[SECURITY] Fedora 39 Update: chromium-120.0.6099.199-1.fc39
2024-01-05 01:08:08
redos
redos
ROS-20240328-08
2024-03-28 00:00:00
gentoo
gentoo
QtWebEngine: Multiple Vulnerabilities
2024-02-18 00:00:00
Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities
2024-01-31 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - January 2024
2024-01-09 21:23:10
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
7.1
Confidence
High
EPSS
0.001
Percentile
43.6%
Related for UB:CVE-2024-0225