Lucene search

K

MicrosoftMS:CVE-2024-4947

HistoryMay 16, 2024 - 7:00 a.m.

Chromium: CVE-2024-4947 Type Confusion in V8

2024-05-1607:00:32

Microsoft

msrc.microsoft.com

12

chromium

cve-2024-4947

type confusion

v8

google

microsoft edge

vulnerability

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.3 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

61.3%

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.

Google is aware that an exploit for CVE-2024-4947 exists in the wild.

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.3 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

61.3%

Related for MS:CVE-2024-4947

cve1 osv2 cisa_kev1 attackerkb1 vulnrichment1 redhatcve1 debiancve1 nvd1 cvelist1 ubuntucve1 wolfi1 openvas9 qualysblog1 mageia1 kaspersky2 nessus8 debian1 chrome1 fedora3 thn3 freebsd1 redos1