Inappropriate Implementation in DevTools in Google Chrome prior to 126.0.6478.54 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension. (Chromium security severity: High)
References
Configurations
History
21 Nov 2024, 09:48
Type | Values Removed | Values Added |
---|---|---|
References | () https://chromereleases.googleblog.com/2024/06/stable-channel-update-for-desktop.html - Third Party Advisory | |
References | () https://issues.chromium.org/issues/341875171 - Permissions Required | |
References | () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7VXA32LXMNK3DSK3JBRLTBPFUH7LTODU/ - Third Party Advisory | |
References | () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MPU7AB53QQVNTBPGRMJRY5SXJNYWW3FX/ - Third Party Advisory |
25 Oct 2024, 19:35
Type | Values Removed | Values Added |
---|---|---|
CWE |
01 Aug 2024, 14:00
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-474 |
20 Jun 2024, 15:08
Type | Values Removed | Values Added |
---|---|---|
References | () https://chromereleases.googleblog.com/2024/06/stable-channel-update-for-desktop.html - Third Party Advisory | |
References | () https://issues.chromium.org/issues/341875171 - Permissions Required | |
References | () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7VXA32LXMNK3DSK3JBRLTBPFUH7LTODU/ - Third Party Advisory | |
References | () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MPU7AB53QQVNTBPGRMJRY5SXJNYWW3FX/ - Third Party Advisory | |
CPE | cpe:2.3:o:fedoraproject:fedora:40:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:* cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* |
|
First Time |
Fedoraproject
Google chrome Fedoraproject fedora |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 8.8 |
CWE | NVD-CWE-noinfo |
14 Jun 2024, 06:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
14 Jun 2024, 03:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
13 Jun 2024, 18:36
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
11 Jun 2024, 21:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-06-11 21:15
Updated : 2024-11-21 09:48
NVD link : CVE-2024-5836
Mitre link : CVE-2024-5836
CVE.ORG link : CVE-2024-5836
JSON object : View
Products Affected
- chrome
fedoraproject
- fedora
CWE