CVE-2024-6777
July 16, 2024, 10:15 p.m.
Tags
Product(s) Impacted
Google Chrome
- before 126.0.6478.182
Description
Use after free in Navigation in Google Chrome prior to 126.0.6478.182 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. (Chromium security severity: High)
Weaknesses
CWE-416
Use After Free
Referencing memory after it has been freed can cause a program to crash, use unexpected values, or execute code.
CWE ID: 416Date
Published: July 16, 2024, 10:15 p.m.
Last Modified: July 16, 2024, 10:15 p.m.
Status : Received
CVE has been recently published to the CVE List and has been received by the NVD.
More infoSource
chrome-cve-admin@google.com
References
https://chromereleases.googleblog.com/
chrome-cve-admin@google.com
https://issues.chromium.org/
chrome-cve-admin@google.com