nvd-json-data-feeds/CVE-2024/CVE-2024-67xx/CVE-2024-6777.json

{
  "id": "CVE-2024-6777",
  "sourceIdentifier": "chrome-cve-admin@google.com",
  "published": "2024-07-16T22:15:07.267",
  "lastModified": "2024-07-17T13:34:20.520",
  "vulnStatus": "Awaiting Analysis",
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Use after free in Navigation in Google Chrome prior to 126.0.6478.182 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. (Chromium security severity: High)"
    },
    {
      "lang": "es",
      "value": "El Use After Free en Navegaci\u00f3n en Google Chrome anterior a 126.0.6478.182 permiti\u00f3 a un atacante convencer a un usuario de instalar una extensi\u00f3n maliciosa para explotar potencialmente la corrupci\u00f3n del mont\u00f3n a trav\u00e9s de una extensi\u00f3n de Chrome manipulada. (Severidad de seguridad de Chrome: alta)"
    }
  ],
  "metrics": {},
  "weaknesses": [
    {
      "source": "chrome-cve-admin@google.com",
      "type": "Secondary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-416"
        }
      ]
    }
  ],
  "references": [
    {
      "url": "https://chromereleases.googleblog.com/2024/07/stable-channel-update-for-desktop.html",
      "source": "chrome-cve-admin@google.com"
    },
    {
      "url": "https://issues.chromium.org/issues/345640549",
      "source": "chrome-cve-admin@google.com"
    }
  ]
}