PT-2004-1122 · Google+4 · Google Chrome+4

Krace

Publicado

2004-08-16

Atualizado

2025-03-19

CVE-2024-11113

CVSS v2.0

Alta

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 131.0.6778.69

Description The issue is related to a use after free problem in the Accessibility component of Google Chrome, which can be exploited by a remote attacker who has compromised the renderer process. This can potentially lead to heap corruption via a crafted HTML page. The vulnerability is of medium severity.

Recommendations For Google Chrome versions prior to 131.0.6778.69, update to version 131.0.6778.69 or later to resolve the issue. As a temporary workaround, consider restricting access to potentially vulnerable HTML pages until the update is applied.

Correção

Use After Free

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-416

Identificadores relacionados

ALT-PU-2024-17740

ALT-PU-2025-4366

BDU:2024-10330

CVE-2024-11113

DSA-5817-1

OPENSUSE-SU-2024:0373-1

OPENSUSE-SU-2024:0374-1

OPENSUSE-SU-2024:14511-1

Produtos afetados

Alt Linux

Astra Linux

Debian

Google Chrome

Red Os

PT-2004-1122 · Google+4 · Google Chrome+4

CVE-2024-11113

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 44