Use after free in Autofill in Google Chrome prior to 128.0.6613.84 allowed a remote attacker who had convinced the user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Metrics
Affected Vendors & Products
References
History
Thu, 22 Aug 2024 19:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Thu, 22 Aug 2024 18:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Google
Google chrome |
|
CPEs | cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* | |
Vendors & Products |
Google
Google chrome |
|
Metrics |
cvssV3_1
|
Wed, 21 Aug 2024 20:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Use after free in Autofill in Google Chrome prior to 128.0.6613.84 allowed a remote attacker who had convinced the user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) | |
Weaknesses | CWE-416 | |
References |
|
MITRE
Status: PUBLISHED
Assigner: Chrome
Published: 2024-08-21T20:20:24.177Z
Updated: 2024-08-27T13:02:30.858Z
Reserved: 2024-08-19T19:17:20.113Z
Link: CVE-2024-7968
Vulnrichment
Updated: 2024-08-22T19:01:07.305Z
NVD
Status : Modified
Published: 2024-08-21T21:15:09.133
Modified: 2024-08-27T13:35:04.780
Link: CVE-2024-7968
Redhat
No data.