Lucene search
ChromeVULNRICHMENT:CVE-2024-1670HistoryFeb 21, 2024 - 3:14 a.m.
CVE-2024-1670
2024-02-2103:14:42
Chrome
github.com
2
chrome
mojo
heap corruption
html page
remote attacker
cve-2024-1670
vulnerability
Use after free in Mojo in Google Chrome prior to 122.0.6261.57 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
ADP Affected
[
{
"cpes": [
"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*"
],
"vendor": "google",
"product": "chrome",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "122.0.6261.57",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:*"
],
"vendor": "fedoraproject",
"product": "fedora",
"versions": [
{
"status": "affected",
"version": "39"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:fedoraproject:fedora:40:*:*:*:*:*:*:*"
],
"vendor": "fedoraproject",
"product": "fedora",
"versions": [
{
"status": "affected",
"version": "40"
}
],
"defaultStatus": "unknown"
}
]References
chromereleases.googleblog.com/2024/02/stable-channel-update-for-desktop_20.html
issues.chromium.org/issues/41481374
lists.fedoraproject.org/archives/list/[email protected]/message/PWWBMVQTSERVBXSXCZVUKIMEDNQUQ7O3/
lists.fedoraproject.org/archives/list/[email protected]/message/QDCMYQ3J45NHQ4EJREM3BJNNKB5BK4Y7/
Related
ubuntucve
ubuntucve
CVE-2024-1670
2024-02-21 00:00:00
freebsd
freebsd
electron{27,28} -- Use after free in Mojo
2024-02-28 00:00:00
chromium -- multiple security fixes
2024-02-20 00:00:00
prion
prion
Design/Logic Flaw
2024-02-21 04:15:00
alpinelinux
alpinelinux
CVE-2024-1670
2024-02-21 04:15:08
mscve
mscve
Chromium: CVE-2024-1670 Use after free in Mojo
2024-02-23 18:57:19
cvelist
cvelist
CVE-2024-1670
2024-02-21 03:14:42
nvd
nvd
CVE-2024-1670
2024-02-21 04:15:08
cve
cve
CVE-2024-1670
2024-02-21 04:15:08
osv
osv
CVE-2024-1670
2024-02-21 04:15:08
nodejs-electron-28.2.5-1.1 on GA media
2024-06-15 00:00:00
chromium - security update
2024-02-23 00:00:00
debiancve
debiancve
CVE-2024-1670
2024-02-21 04:15:08
veracode
veracode
Use-After-Free
2024-02-26 08:25:10
nessus
nessus
FreeBSD : electron{27,28} -- Use after free in Mojo (3567456a-6b17-41f7-ba7f-5cd3efb2b7c9)
2024-02-29 00:00:00
Google Chrome < 122.0.6261.57 Multiple Vulnerabilities
2024-02-20 00:00:00
Debian dsa-5629 : chromium - security update
2024-02-23 00:00:00
openvas
openvas
fedora
fedora
[SECURITY] Fedora 38 Update: chromium-122.0.6261.57-1.fc38
2024-02-25 01:26:42
[SECURITY] Fedora 39 Update: chromium-122.0.6261.57-1.fc39
2024-02-23 01:26:12
debian
debian
[SECURITY] [DSA 5629-1] chromium security update
2024-02-23 06:27:13
chrome
chrome
Stable Channel Update for Desktop
2024-02-20 00:00:00
kaspersky
kaspersky
KLA64091 Multiple vulnerabilities in Google Chrome
2024-02-20 00:00:00
KLA64520 Multiple vulnerabilities in Microsoft Browser
2024-02-23 00:00:00
redos
redos
ROS-20240507-09
2024-05-07 00:00:00
AI Score
7.3
Confidence
High
SSVC
Exploitation
none
Automatable
no
Technical Impact
total
Related for VULNRICHMENT:CVE-2024-1670