8.8
CVSSv3

CVE-2024-5497

CVSSv4: NA | CVSSv3: 8.8 | CVSSv2: NA | VMScore: 980 | EPSS: 0.00057 | KEV: Not Included
Published: 30/05/2024 Updated: 26/12/2024

Vulnerability Summary

Out of bounds memory access in Browser UI in Google Chrome before 125.0.6422.141 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

google chrome

fedoraproject fedora 39

fedoraproject fedora 40

Vendor Advisories

LTS-120 is being updated in the LTS (Long Term Support) channel, version 12006099318 (Platform Version: 15662115), for most ChromeOS devices Release notes for LTS-120 can be found here Want to know more about Long-term Support? Click hereThis update contains selective Security fixes, including:339061099 High CVE-2024-5 ...
The Stable channel has been updated to 12506422141/142 for Windows, Mac and 12506422141 for Linux which will roll out over the coming days/weeks A full list of changes in this build is available in the LogSecurity Fixes and RewardsNote: Access to bug details and links may be kept restricted until a majority of users are updated w ...