CVE-2024-5836

June 11, 2024, 9:15 p.m.

None
No Score

Description

Inappropriate Implementation in DevTools in Google Chrome prior to 126.0.6478.54 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension. (Chromium security severity: High)

Product(s) Impacted

Product Versions
Google Chrome
  • ['before 126.0.6478.54']

Weaknesses

Common security weaknesses mapped to this vulnerability.

References

https://chromereleases.googleblog.com/2024/06/stable-channel-update-for-desktop.html
https://issues.chromium.org/issues/341875171

Tags

chrome-cve-admin@google.com
2024-06-11
CVE-2024-5836

Timeline

Published: June 11, 2024, 9:15 p.m.
Last Modified: June 11, 2024, 9:15 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

chrome-cve-admin@google.com

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.