Multiple vulnerabilities in Google Chrome

Описание

Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, spoof user interface, bypass security restrictions.

Below is a complete list of vulnerabilities:

1. Integer underflow vulnerability in WebUI can be exploited to cause execute arbitrary code and denial of service.
2. Implementation vulnerability in Downloads can be exploited to cause denial of service.
3. Use after free vulnerability in WebAudio can be exploited to cause denial of service or execute arbitrary code.
4. Policy enforcement vulnerability in DevTools can be exploited to cause denial of service.
5. Policy enforcement vulnerability in iOS Security UI can be exploited to cause denial of service.
6. Use after free vulnerability in Passwords can be exploited to cause denial of service or execute arbitrary code.
7. Implementation vulnerability in Extensions API can be exploited to cause denial of service.
8. Use after free vulnerability in Reading Mode can be exploited to cause denial of service or execute arbitrary code.
9. Implementation vulnerability in Accessibility can be exploited to cause denial of service.
10. Security UI vulnerability in Payments can be exploited to spoof user interface.
11. Implementation vulnerability in Autofill can be exploited to cause denial of service.
12. Insufficient data validation vulnerability in DevTools can be exploited to bypass security restrictions or execute execute arbitrary code.
13. Use after free vulnerability in WebRTC can be exploited to cause denial of service or execute arbitrary code.

Первичный источник обнаружения

• Chrome Releases: Stable Channel Update for Desktop
  

Эксплуатация

Public exploits exist for this vulnerability.

Связанные продукты

• Google-Chrome

Список CVE

• CVE-2024-0808
  critical
• CVE-2024-0805
  warning
• CVE-2024-0807
  critical
• CVE-2024-0810
  warning
• CVE-2024-0804
  critical
• CVE-2024-0806
  critical
• CVE-2024-0811
  warning
• CVE-2024-0813
  critical
• CVE-2024-0812
  critical
• CVE-2024-0814
  high
• CVE-2024-0809
  warning
• CVE-2024-3172
  critical
• CVE-2024-3170
  critical

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com