Out of bounds memory access in V8 in Google Chrome prior to 123.0.6312.105 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the c6f03ea6-12de-11ef-83d8-4ccc6adda413 advisory.

  - Object lifecycle issue in V8 in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to     potentially exploit object corruption via a crafted HTML page. (Chromium security severity: High)     (CVE-2024-2625)

  - Out of bounds read in Swiftshader in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to     perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Medium)     (CVE-2024-2626)

  - Use after free in Dawn in Google Chrome prior to 123.0.6312.86 allowed a remote attacker to potentially     exploit heap corruption via a crafted HTML page. (Chromium security severity: High) (CVE-2024-2885)

  - Type Confusion in WebAssembly in Google Chrome prior to 123.0.6312.86 allowed a remote attacker to execute     arbitrary code via a crafted HTML page. (Chromium security severity: High) (CVE-2024-2887)

  - Out of bounds memory access in Compositing in Google Chrome prior to 123.0.6312.122 allowed a remote     attacker who had compromised the GPU process to potentially perform a sandbox escape via specific UI     gestures. (Chromium security severity: High) (CVE-2024-3157)

  - Out of bounds memory access in V8 in Google Chrome prior to 123.0.6312.105 allowed a remote attacker to     perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High) (CVE-2024-3159)

  - Heap buffer overflow in ANGLE in Google Chrome prior to 123.0.6312.122 allowed a remote attacker to     potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)     (CVE-2024-3516)

  - Use after free in QUIC in Google Chrome prior to 124.0.6367.60 allowed a remote attacker who had     compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium     security severity: Medium) (CVE-2024-3837)

  - Out of bounds read in Fonts in Google Chrome prior to 124.0.6367.60 allowed a remote attacker to obtain     potentially sensitive information from process memory via a crafted HTML page. (Chromium security     severity: Medium) (CVE-2024-3839)

  - Insufficient policy enforcement in Site Isolation in Google Chrome prior to 124.0.6367.60 allowed a remote     attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Medium)     (CVE-2024-3840)

  - Use after free in V8 in Google Chrome prior to 124.0.6367.60 allowed a remote attacker to potentially     exploit heap corruption via a crafted HTML page. (Chromium security severity: High) (CVE-2024-3914)

  - Type confusion in ANGLE in Google Chrome prior to 124.0.6367.78 allowed a remote attacker to potentially     exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical) (CVE-2024-4058)

  - Use after free in Dawn in Google Chrome prior to 124.0.6367.78 allowed a remote attacker to potentially     exploit heap corruption via a crafted HTML page. (Chromium security severity: High) (CVE-2024-4060)

  - Use after free in Picture In Picture in Google Chrome prior to 124.0.6367.118 allowed a remote attacker to     potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)     (CVE-2024-4331)

  - Use after free in Dawn in Google Chrome prior to 124.0.6367.118 allowed a remote attacker to potentially     exploit heap corruption via a crafted HTML page. (Chromium security severity: High) (CVE-2024-4368)

  - Use after free in Visuals in Google Chrome prior to 124.0.6367.201 allowed a remote attacker who had     compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
    (Chromium security severity: High) (CVE-2024-4671)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-4d2d73ab31 advisory.

    update to 123.0.6312.122

          * High CVE-2024-3157: Out of bounds write in Compositing
          * High CVE-2024-3516: Heap buffer overflow in ANGLE
          * High CVE-2024-3515: Use after free in Dawn


    ----

    update to 123.0.6312.105

      * High CVE-2024-3156: Inappropriate implementation in V8
      * High CVE-2024-3158: Use after free in Bookmarks
      * High CVE-2024-3159: Out of bounds memory access in V8


Tenable has extracted the preceding description block directly from the Fedora security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 31617e47-7eec-4c60-9fdf-8aee61622bab advisory.

  - Out of bounds memory access in V8 in Google Chrome prior to 123.0.6312.105 allowed a remote attacker to     perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High) (CVE-2024-3159)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 4a026b6c-f2b8-11ee-8e76-a8a1599412c6 advisory.

  - Inappropriate implementation in V8. (CVE-2024-3156)

  - Use after free in Bookmarks. (CVE-2024-3158)

  - Out of bounds memory access in V8. (CVE-2024-3159)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-39b249a59c advisory.

     update to 123.0.6312.105

          * High CVE-2024-3156: Inappropriate implementation in V8
          * High CVE-2024-3158: Use after free in Bookmarks
          * High CVE-2024-3159: Out of bounds memory access in V8


Tenable has extracted the preceding description block directly from the Fedora security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-5e32ce95a3 advisory.

     update to 123.0.6312.105

          * High CVE-2024-3156: Inappropriate implementation in V8
          * High CVE-2024-3158: Use after free in Bookmarks
          * High CVE-2024-3159: Out of bounds memory access in V8


Tenable has extracted the preceding description block directly from the Fedora security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of Microsoft Edge installed on the remote Windows host is prior to 122.0.2365.120 / 123.0.2420.81. It is, therefore, affected by multiple vulnerabilities as referenced in the April 4, 2024 advisory.

  - Microsoft Edge (Chromium-based) Webview2 Spoofing Vulnerability (CVE-2024-29049)

  - Microsoft Edge (Chromium-based) Spoofing Vulnerability (CVE-2024-29981)

  - Inappropriate implementation in V8 in Google Chrome prior to 123.0.6312.105 allowed a remote attacker to     potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity:
    High) (CVE-2024-3156)

  - Use after free in Bookmarks in Google Chrome prior to 123.0.6312.105 allowed a remote attacker to     potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)     (CVE-2024-3158)

  - Out of bounds memory access in V8 in Google Chrome prior to 123.0.6312.105 allowed a remote attacker to     perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High) (CVE-2024-3159)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Debian 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5654 advisory.

  - Inappropriate implementation in V8. (CVE-2024-3156)

  - Use after free in Bookmarks. (CVE-2024-3158)

  - Out of bounds memory access in V8. (CVE-2024-3159)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of Google Chrome installed on the remote macOS host is prior to 123.0.6312.105. It is, therefore, affected by multiple vulnerabilities as referenced in the 2024_04_stable-channel-update-for-desktop advisory.

  - Inappropriate implementation in V8 in Google Chrome prior to 123.0.6312.105 allowed a remote attacker to     potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity:
    High) (CVE-2024-3156)

  - Use after free in Bookmarks in Google Chrome prior to 123.0.6312.105 allowed a remote attacker to     potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)     (CVE-2024-3158)

  - Out of bounds memory access in V8 in Google Chrome prior to 123.0.6312.105 allowed a remote attacker to     perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High) (CVE-2024-3159)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of Google Chrome installed on the remote Windows host is prior to 123.0.6312.105. It is, therefore, affected by multiple vulnerabilities as referenced in the 2024_04_stable-channel-update-for-desktop advisory.

  - Inappropriate implementation in V8 in Google Chrome prior to 123.0.6312.105 allowed a remote attacker to     potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity:
    High) (CVE-2024-3156)

  - Use after free in Bookmarks in Google Chrome prior to 123.0.6312.105 allowed a remote attacker to     potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)     (CVE-2024-3158)

  - Out of bounds memory access in V8 in Google Chrome prior to 123.0.6312.105 allowed a remote attacker to     perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High) (CVE-2024-3159)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Severity
197096	FreeBSD : qt6-webengine -- Multiple vulnerabilities (c6f03ea6-12de-11ef-83d8-4ccc6adda413)	Nessus	FreeBSD Local Security Checks	critical
194581	Fedora 40 : chromium (2024-4d2d73ab31)	Nessus	Fedora Local Security Checks	high
193273	FreeBSD : electron{27,28} -- Out of bounds memory access in V8 (31617e47-7eec-4c60-9fdf-8aee61622bab)	Nessus	FreeBSD Local Security Checks	high
193189	FreeBSD : chromium -- multiple security fixes (4a026b6c-f2b8-11ee-8e76-a8a1599412c6)	Nessus	FreeBSD Local Security Checks	high
192957	Fedora 39 : chromium (2024-39b249a59c)	Nessus	Fedora Local Security Checks	high
192933	Fedora 38 : chromium (2024-5e32ce95a3)	Nessus	Fedora Local Security Checks	high
192932	Microsoft Edge (Chromium) < 122.0.2365.120 / 123.0.2420.81 Multiple Vulnerabilities	Nessus	Windows	high
192916	Debian dsa-5654 : chromium - security update	Nessus	Debian Local Security Checks	high
192764	Google Chrome < 123.0.6312.105 Multiple Vulnerabilities	Nessus	MacOS X Local Security Checks	high
192763	Google Chrome < 123.0.6312.105 Multiple Vulnerabilities	Nessus	Windows	high

Detections

Analytics

CVE-2024-3159

high

Tenable Plugins

critical

high

high

high

high

high

high

high

high

high