CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
58.9%
chromium is vulnerable of Out-of-bounds Memory Access. The vulnerability due to a program accesses memory outside the bounds of what is allocated in V8 of Google Chrome prior to 120.0.6099.224. It allows a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Vendor | Product | Version | CPE |
---|---|---|---|
veracode | chromium\ | sid | cpe:2.3:a:veracode:chromium\:sid:88.0.4324.182-1:*:*:*:*:*:*:* |
veracode | chromium\ | sid | cpe:2.3:a:veracode:chromium\:sid:83.0.4103.116-3.1:*:*:*:*:*:*:* |
veracode | chromium\ | bullseye | cpe:2.3:a:veracode:chromium\:bullseye:83.0.4103.116-3.1:*:*:*:*:*:*:* |
veracode | qt6-qtwebengine\ | 3.19 | cpe:2.3:a:veracode:qt6-qtwebengine\:3.19:6.6.1-r0:*:*:*:*:*:*:* |
veracode | qt6-qtwebengine\ | 3.19 | cpe:2.3:a:veracode:qt6-qtwebengine\:3.19:6.6.1-r1:*:*:*:*:*:*:* |
veracode | qt6-qtwebengine\ | 3.19 | cpe:2.3:a:veracode:qt6-qtwebengine\:3.19:6.6.0-r6:*:*:*:*:*:*:* |
veracode | qt6-qtwebengine\ | edge | cpe:2.3:a:veracode:qt6-qtwebengine\:edge:6.2.3-r0:*:*:*:*:*:*:* |
veracode | qt6-qtwebengine\ | edge | cpe:2.3:a:veracode:qt6-qtwebengine\:edge:6.2.2-r1:*:*:*:*:*:*:* |
veracode | qt6-qtwebengine\ | edge | cpe:2.3:a:veracode:qt6-qtwebengine\:edge:6.4.2-r0:*:*:*:*:*:*:* |
veracode | qt6-qtwebengine\ | edge | cpe:2.3:a:veracode:qt6-qtwebengine\:edge:6.4.2-r5:*:*:*:*:*:*:* |
chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_16.html
crbug.com/1517354
lists.fedoraproject.org/archives/list/[email protected]/message/IIUBRVICICWREJQUVT67RS7E4PVZQ5RS/
lists.fedoraproject.org/archives/list/[email protected]/message/TNN4SO5UI3U3Q6ASTVT6WMZ4723FYDLH/
security-tracker.debian.org/tracker/CVE-2024-0519
www.couchbase.com/alerts/
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
58.9%