CVE CVE

CVE-2024-4947

CISA Known Exploited Vulnerability (KEV)

Google Chromium V8 Type Confusion Vulnerability

May 20, 2024

June 10, 2024

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Description

Type Confusion in V8 in Google Chrome prior to 125.0.6422.60 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

Weakness Enumeration

CWE-ID CWE Name

CWE-843
Access of Resource Using Incompatible Type (‘Type Confusion’)

Known Affected Software Configurations


cpe:2.3:a:google:chrome:127.0.6533.88:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:90.0.4430.85:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:119.0.6045.105:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:127.0.6533.72:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:120.0.6099.224:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:127.0.6533.99:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:89.0.4389.128:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:122.0.6261.57:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:121.0.6167.139:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:54.0.2840.90:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:103.0.5060.114:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:114.0.5735.106:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:105.0.5195.102:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:124.0.6367.78:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:107.0.5304.121:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:57.0.2987.108:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:126.0.6478.114:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:54.0.2840.85:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:49.0.2623.108:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:126.0.6478.54:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:114.0.5735.110:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:124.0.6367.60:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:123.0.6312.58:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:123.0.6312.105:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:120.0.6099.62:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:121.0.6167.160:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:121.0.6167.85:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:2.0.172.43:*:*:*:*:*:*:*

cpe:2.3:o:fedoraproject:fedora:40:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:120.0.6099.199:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:120.0.6099.129:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:120.0.6099.109:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:119.0.6045.199:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:117.0.5938.62:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:117.0.5938.149:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:118.0.5993.70:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:116.0.5845.110:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:112.0.5615.121:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:111.0.5563.110:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:110.0.5481.177:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:113.0.5672.63:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:112.0.5615.137:*:*:*:*:*:*:*

cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:*

cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:116.0.5845.140:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:115.0.5790.98:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:115.0.5790.99:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:115.0.5790.170:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:114.0.5735.90:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:113.0.5672.126:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:112.0.5615.49:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:111.0.5563.64:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:110.0.5481.77:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:109.0.5414.119:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:108.0.5359.94:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:106.0.5249.119:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:106.0.5249.62:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:107.0.5304.62:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:106.0.5249.91:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:106.0.5235.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:106.0.5236.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:106.0.5235.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:106.0.5232.2:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:106.0.5236.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:106.0.5234.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:106.0.5232.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:106.0.5231.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:106.0.5231.2:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:106.0.5231.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:106.0.5230.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:106.0.5237.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:106.0.5232.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:106.0.5230.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:106.0.5229.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:106.0.5228.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:106.0.5228.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:106.0.5227.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:104.0.5112.111:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:106.0.5228.2:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:104.0.5112.112:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:104.0.5112.110:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:104.0.5112.107:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:104.0.5112.108:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:104.0.5112.106:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:106.0.5237.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:106.0.5229.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:104.0.5112.109:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:100.0.4896.241:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:100.0.4896.240:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:105.0.5195.74:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:106.0.5225.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:105.0.5195.73:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:105.0.5195.71:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:106.0.5226.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:105.0.5195.72:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:105.0.5195.70:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:105.0.5195.67:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:105.0.5195.68:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:105.0.5195.58:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:105.0.5195.55:*:*:*:*:*:*:*

Details

Source:
NVD
Published:
Updated:

Risk information

CVSS v3

Base score:
8.8
Severity:

HIGH

Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CVSS v2

Not defined