CVE-2024-6778

CVSS V2 None CVSS V3 None

Description

Race in DevTools in Google Chrome prior to 126.0.6478.182 allowed an attacker who convinced a user to install a malicious extension to inject scripts or HTML into a privileged page via a crafted Chrome Extension. (Chromium security severity: High)

Overview

CVE ID
CVE-2024-6778

Assigner
Chrome

Vulnerability Status
PUBLISHED

Published Version
2024-07-16T21:43:47.723Z

Last Modified Date
2024-07-16T21:43:47.723Z

Weakness Enumerations

CWE	URL
CWE-362	http://cwe.mitre.org/data/definitions/362.html

References

Reference URL	Reference Tags
https://chromereleases.googleblog.com/2024/07/stable-channel-update-for-desktop.html
https://issues.chromium.org/issues/341136300

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2024-6778
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6778

History

Created	Old Value	New Value	Data Type	Notes
2024-07-17 13:07:50				Added to TrackCVE