nvd-json-data-feeds/CVE-2024/CVE-2024-49xx/CVE-2024-4950.json

{
  "id": "CVE-2024-4950",
  "sourceIdentifier": "chrome-cve-admin@google.com",
  "published": "2024-05-15T21:15:09.493",
  "lastModified": "2024-06-10T18:15:37.830",
  "vulnStatus": "Awaiting Analysis",
  "descriptions": [
    {
      "lang": "en",
      "value": "Inappropriate implementation in Downloads in Google Chrome prior to 125.0.6422.60 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)"
    },
    {
      "lang": "es",
      "value": "La implementaci\u00f3n inapropiada en Descargas en Google Chrome anterior a 125.0.6422.60 permiti\u00f3 que un atacante remoto convenciera a un usuario de realizar gestos espec\u00edficos de la interfaz de usuario para realizar una suplantaci\u00f3n de la interfaz de usuario a trav\u00e9s de una p\u00e1gina HTML manipulada. (Severidad de seguridad de Chrome: baja)"
    }
  ],
  "metrics": {},
  "references": [
    {
      "url": "https://chromereleases.googleblog.com/2024/05/stable-channel-update-for-desktop_15.html",
      "source": "chrome-cve-admin@google.com"
    },
    {
      "url": "https://issues.chromium.org/issues/40065403",
      "source": "chrome-cve-admin@google.com"
    },
    {
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6G7EYH2JAK5OJPVNC6AXYQ5K7YGYNCDN/",
      "source": "chrome-cve-admin@google.com"
    },
    {
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NTSN22LNYXMWHVTYNOYQVOY7VDZFHENQ/",
      "source": "chrome-cve-admin@google.com"
    },
    {
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WSUWM73ZCXTN62AT2REYQDD5ZKPFMDZD/",
      "source": "chrome-cve-admin@google.com"
    }
  ]
}