Lucene search
Ubuntu.comUB:CVE-2024-2887HistoryMar 26, 2024 - 12:00 a.m.
CVE-2024-2887
2024-03-2600:00:00
ubuntu.com
ubuntu.com
20
cve-2024-2887
type confusion
webassembly
google chrome
remote code execution
crafted html
severity high
8.1 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
7.6 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
15.9%
Type Confusion in WebAssembly in Google Chrome prior to 123.0.6312.86
allowed a remote attacker to execute arbitrary code via a crafted HTML
page. (Chromium security severity: High)
Notes
| Author | Note |
|---|---|
| alexmurray | The Debian chromium source package is called chromium-browser in Ubuntu |
| mdeslaur | starting with Ubuntu 19.10, the chromium-browser package is just a script that installs the Chromium snap |
Related
nvd
nvd
CVE-2024-2887
2024-03-26 21:15:53
debiancve
debiancve
CVE-2024-2887
2024-03-26 21:15:53
vulnrichment
vulnrichment
CVE-2024-2887
2024-03-26 20:09:34
zdi
zdi
cvelist
cvelist
CVE-2024-2887
2024-03-26 20:09:34
osv
osv
CVE-2024-2887
2024-03-26 21:15:53
chromium - security update
2024-03-28 00:00:00
alpinelinux
alpinelinux
CVE-2024-2887
2024-03-26 21:15:53
mscve
mscve
Chromium: CVE-2024-2887 Type Confusion in WebAssembly
2024-03-27 07:00:00
veracode
veracode
Type Confusion
2024-04-04 14:17:52
cve
cve
CVE-2024-2887
2024-03-26 21:15:53
hivepro
hivepro
Attacks, Vulnerabilities and Actors 25 to 31 March 2024
2024-04-03 02:11:44
Google Patches Critical Zero-Day Exploits Found at Pwn2Own
2024-04-01 05:52:35
freebsd
freebsd
electron{27,28} -- multiple vulnerabilities
2024-04-03 00:00:00
chromium -- multiple security fixes
2024-03-26 00:00:00
qt6-webengine -- Multiple vulnerabilities
2024-04-03 00:00:00
openvas
openvas
Fedora: Security Advisory for chromium (FEDORA-2024-b4dab205d7)
2024-04-03 00:00:00
Google Chrome Security Update (stable-channel-update-for-desktop_26-2024-03) - Windows
2024-03-27 00:00:00
Fedora: Security Advisory for chromium (FEDORA-2024-0bb0e8f2a0)
2024-03-29 00:00:00
kaspersky
kaspersky
KLA65313 Multiple vulnerabilities in Google Chrome
2024-03-26 00:00:00
KLA65334 Multiple vulnerabilities in Microsoft Browser
2024-03-27 00:00:00
KLA65382 Multiple vulnerabilities in Opera
2024-04-02 00:00:00
nessus
nessus
Fedora 40 : chromium (2024-85531c965e)
2024-04-29 00:00:00
Google Chrome < 123.0.6312.86 Multiple Vulnerabilities
2024-03-26 00:00:00
Fedora 38 : chromium (2024-b4dab205d7)
2024-03-28 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: chromium-123.0.6312.86-1.fc39
2024-03-29 01:13:09
[SECURITY] Fedora 38 Update: chromium-123.0.6312.86-1.fc38
2024-03-29 02:42:45
[SECURITY] Fedora 40 Update: chromium-123.0.6312.86-1.fc40
2024-03-29 00:22:15
chrome
chrome
Stable Channel Update for Desktop
2024-03-26 00:00:00
thn
thn
Chrome Zero-Day Alert — Update Your Browser to Patch New Vulnerability
2024-05-10 10:23:00
New Chrome Zero-Day Vulnerability CVE-2024-4761 Under Active Exploitation
2024-05-14 13:51:00
Google Patches Yet Another Actively Exploited Chrome Zero-Day Vulnerability
2024-05-16 03:01:00
debian
debian
[SECURITY] [DSA 5648-1] chromium security update
2024-03-29 01:42:13
redos
redos
ROS-20240507-09
2024-05-07 00:00:00
8.1 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
7.6 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
15.9%
Related for UB:CVE-2024-2887