Google Chromium Visuals Use-After-Free Vulnerability

Description

Google Chromium Visuals contains a use-after-free vulnerability that allows a remote attacker to exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.

Required Action

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

References

• https://chromereleases.googleblog.com/2024/05/stable-channel-update-for-desktop_9.html?m=1
• https://nvd.nist.gov/vuln/detail/CVE-2024-4671

Additional Information

Catalog Version

2025.01.24

Catalog Released

Jan. 24, 2025

Days Until Due

0 days

Last Updated

5 months, 4 weeks ago