Inappropriate implementation in iOS in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)
References
Configurations
History
21 Nov 2024, 09:10
Type | Values Removed | Values Added |
---|---|---|
References | () https://chromereleases.googleblog.com/2024/03/stable-channel-update-for-desktop_19.html - Vendor Advisory | |
References | () https://issues.chromium.org/issues/41481877 - Permissions Required | |
References | () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2D3Z6CRRN4J3IUZPJZVURGMRBN6WFPTU/ - Mailing List | |
References | () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6JINDYFB3MPH43ECTI72BV63K4RXSG22/ - Mailing List | |
References | () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AQVVW4FLQDIJ2UABGXK2SMS5AUGT54FM/ - Mailing List |
30 Oct 2024, 16:35
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-79 |
01 Apr 2024, 15:23
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:fedoraproject:fedora:40:*:*:*:*:*:*:* cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:* |
|
First Time |
Fedoraproject fedora
Fedoraproject Google chrome |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
CWE | NVD-CWE-noinfo | |
References | () https://chromereleases.googleblog.com/2024/03/stable-channel-update-for-desktop_19.html - Vendor Advisory | |
References | () https://issues.chromium.org/issues/41481877 - Permissions Required | |
References | () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2D3Z6CRRN4J3IUZPJZVURGMRBN6WFPTU/ - Mailing List | |
References | () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6JINDYFB3MPH43ECTI72BV63K4RXSG22/ - Mailing List | |
References | () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AQVVW4FLQDIJ2UABGXK2SMS5AUGT54FM/ - Mailing List |
25 Mar 2024, 01:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
23 Mar 2024, 03:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Summary |
|
22 Mar 2024, 02:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
20 Mar 2024, 17:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-03-20 17:15
Updated : 2024-11-21 09:10
NVD link : CVE-2024-2630
Mitre link : CVE-2024-2630
CVE.ORG link : CVE-2024-2630
JSON object : View
Products Affected
- chrome
fedoraproject
- fedora
CWE
NVD-CWE-noinfo
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')