Detections
Analytics
Google Chrome < 72.0.3626.121 Use-After-Free
high Nessus Network Monitor Plugin ID 700422
Synopsis
The remote host is utilizing a web browser that is affected by a Use-After-Free (UAF) vulnerability as referenced in the 2019_03_stable-channel-update-for-desktop advisory.Description
The version of Google Chrome installed on the remote Windows host is prior to 72.0.3626.121. It is, therefore, affected by a UAF vulnerability as referenced in the 2019_03_stable-channel-update-for-desktop advisory.Solution
Upgrade to Chrome version 72.0.3626.121 or later.See Also
https://chromereleases.googleblog.com/2019/03/stable-channel-update-for-desktop.html
Plugin Details
Severity: High
ID: 700422
Family: Web Clients
Published: 3/1/2019
Updated: 3/25/2019
Nessus ID: 122617
Risk Information
VPR
Risk Factor: High
Score: 7.2
CVSS v2
Risk Factor: High
Base Score: 9.3
Temporal Score: 6.9
Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C
Vulnerability Information
CPE: cpe:/a:google:chrome
Patch Publication Date: 3/1/2019
Vulnerability Publication Date: 3/1/2019
Reference Information
CVE: CVE-2019-5786
BID: 107213