PT-2024-1907 · Google+4 · V8+5

Bohan Liu

Published

2024-02-27

Updated

2025-12-15

CVE-2024-1939

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 122.0.6261.94

Description The issue is related to a Type Confusion in V8, which can potentially allow a remote attacker to exploit heap corruption via a crafted HTML page. The severity of this issue is considered High by Chromium.

Recommendations For versions prior to 122.0.6261.94, update to version 122.0.6261.94 or later to resolve the issue. As a temporary workaround, consider restricting access to crafted HTML pages until a patch is applied.

Exploit

Fix

Type Confusion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-843

Related Identifiers

ALSA-2025_16880

ALT-PU-2024-10294

ALT-PU-2024-14286

ALT-PU-2024-14830

ALT-PU-2024-3320

BDU:2024-01686

CVE-2024-1939

DSA-5634-1

Affected Products

Alt Linux

Astra Linux

Debian

Google Chrome

Red Os

PT-2024-1907 · Google+4 · V8+5

CVE-2024-1939

Weakness Enumeration

Related Identifiers

Affected Products

References · 32