CVE-2024-3157

Summary

Out of bounds memory access in Compositing in Google Chrome prior to 123.0.6312.122 allowed a remote attacker who had compromised the GPU process to potentially perform a sandbox escape via specific UI gestures. (Chromium security severity: High)

Affected Software

VendorProductVersion RangeStatus
GoogleChrome123.0.6312.122 < 123.0.6312.122affected

Weaknesses

  • Out of bounds write

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

CVE Program Container

Additional References

References