Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.5
CVSSv3

CVE-2024-3839

Published: 17/04/2024 Updated: 03/05/2024
CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8
VMScore: 0
Subscribe to Google

Vulnerability Summary

Out of bounds read in Fonts in Google Chrome before 124.0.6367.60 allowed a remote malicious user to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)

Vulnerable Product Search on Vulmon Subscribe to Product

google chrome

Vendor Advisories

Google Chrome: Stable Channel Update for Desktop
The Stable channel has been updated to 1240636760/61 for Windows and Mac and 1240636760 to Linux which will roll out over the coming days/weeks A full list of changes in this build is available in the LogThe Extended Stable channel has been updated to 1240636760/61 for Windows and Mac which will roll out over the co ...

References

CWE-125https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.htmlhttps://issues.chromium.org/issues/41491859https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T/https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6/https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO/https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ/https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7/https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN/https://nvd.nist.govhttps://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.html
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322cross-site request forgeryunauthorizedCVE-2024-33925reflected XSSCVE-2023-51580CVE-2023-51579CVE-2015-2051CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook