Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie

Type deb

Namespace debian

Name chromium

Version 124.0.6367.60-1

Qualifiers

distro	trixie

Subpath

Is_vulnerable false

Next_non_vulnerable_version 124.0.6367.78-1~deb12u1

Latest_non_vulnerable_version 147.0.7727.101-1

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-1hju-8srd-57bg

vulnerability_id VCID-1hju-8srd-57bg

summary Inappropriate implementation in Extensions in Google Chrome prior to 124.0.6367.60 allowed a remote attacker to perform UI spoofing via a crafted Chrome Extension. (Chromium security severity: Low)

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-3844

reference_id

reference_type

scores

value	0.00826
scoring_system	epss
scoring_elements	0.74426
published_at	2026-04-02T12:55:00Z

value	0.00826
scoring_system	epss
scoring_elements	0.74507
published_at	2026-04-21T12:55:00Z

value	0.00826
scoring_system	epss
scoring_elements	0.74516
published_at	2026-04-18T12:55:00Z

value	0.00826
scoring_system	epss
scoring_elements	0.74508
published_at	2026-04-16T12:55:00Z

value	0.00826
scoring_system	epss
scoring_elements	0.74471
published_at	2026-04-13T12:55:00Z

value	0.00826
scoring_system	epss
scoring_elements	0.74479
published_at	2026-04-12T12:55:00Z

value	0.00826
scoring_system	epss
scoring_elements	0.74498
published_at	2026-04-11T12:55:00Z

value	0.00826
scoring_system	epss
scoring_elements	0.74476
published_at	2026-04-09T12:55:00Z

value	0.00826
scoring_system	epss
scoring_elements	0.7446
published_at	2026-04-08T12:55:00Z

value	0.00826
scoring_system	epss
scoring_elements	0.74427
published_at	2026-04-07T12:55:00Z

value	0.00826
scoring_system	epss
scoring_elements	0.74452
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-3844

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3844
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3844

reference_url

https://issues.chromium.org/issues/40058873

reference_id

40058873

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-17T17:57:55Z/

url

https://issues.chromium.org/issues/40058873

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T/

reference_id

CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-17T17:57:55Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7/

reference_id

IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-17T17:57:55Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ/

reference_id

M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-17T17:57:55Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6/

reference_id

PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-17T17:57:55Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6/

reference_url

https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.html

reference_id

stable-channel-update-for-desktop_16.html

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-17T17:57:55Z/

url

https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN/

reference_id

UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-17T17:57:55Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO/

reference_id

WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-17T17:57:55Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO/

fixed_packages

url	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
purl	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

purl pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gbt-xkej-k7aw

vulnerability	VCID-2s6k-knqz-s7bv

vulnerability	VCID-32xu-tbuh-nfds

vulnerability	VCID-5znj-k78s-suca

vulnerability	VCID-6dub-gz8z-m3fk

vulnerability	VCID-7gex-zf7d-5ka4

vulnerability	VCID-88yy-dyf6-cue7

vulnerability	VCID-8uaq-e8kp-87fs

vulnerability	VCID-9p5u-1x3q-63dh

vulnerability	VCID-9s6e-p69b-suep

vulnerability	VCID-9sbp-bp4k-23cn

vulnerability	VCID-ehkc-zgaa-23fy

vulnerability	VCID-fene-srh1-b3gp

vulnerability	VCID-jr1y-txur-ebgr

vulnerability	VCID-n5d6-9gwm-vkc7

vulnerability	VCID-pg29-vrqh-pka8

vulnerability	VCID-pgw2-3qy2-5ban

vulnerability	VCID-pmwr-4j1v-s7gu

vulnerability	VCID-ptwz-uax5-mqbq

vulnerability	VCID-pvbx-j8j1-dkb3

vulnerability	VCID-q45n-pmfj-f7ae

vulnerability	VCID-r2b4-pdwz-ybae

vulnerability	VCID-v2gf-rqxb-57ae

vulnerability	VCID-vscd-6s2t-bucr

vulnerability	VCID-xfz2-cwzt-tqhz

vulnerability	VCID-y17q-5gas-jke9

vulnerability	VCID-z8nt-w84w-tkew

vulnerability	VCID-zcq4-z2c5-2ffr

vulnerability	VCID-zrnp-ujpt-tbee

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.153-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
purl	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.177-1%3Fdistro=trixie

url pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

purl pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1sea-z3vg-wfc4

vulnerability	VCID-212t-kjka-pbe4

vulnerability	VCID-3c8j-6wcw-83ax

vulnerability	VCID-47az-428z-bkar

vulnerability	VCID-7x3z-8d6t-vfen

vulnerability	VCID-8j9g-6zs1-13am

vulnerability	VCID-97y1-b8j2-xfb5

vulnerability	VCID-9amk-6z38-qbb1

vulnerability	VCID-9h91-43nj-7qgy

vulnerability	VCID-dzf3-492x-budu

vulnerability	VCID-erxp-a8pr-zyff

vulnerability	VCID-fk6m-8k4f-hyhz

vulnerability	VCID-hyew-s4ya-43bv

vulnerability	VCID-jd9x-rsee-ekfk

vulnerability	VCID-jku3-pwsy-bufq

vulnerability	VCID-jqs4-fgj9-63g7

vulnerability	VCID-k82r-r6dh-qfem

vulnerability	VCID-mjv9-578z-3kej

vulnerability	VCID-mp8f-94vu-jyf9

vulnerability	VCID-my86-8n81-y3hd

vulnerability	VCID-ndkj-5v64-cfa9

vulnerability	VCID-p4dd-y4mm-fqam

vulnerability	VCID-q17c-ud54-5ydd

vulnerability	VCID-qrwz-k5dg-27b2

vulnerability	VCID-thk2-w3k4-jfep

vulnerability	VCID-uded-9de1-xkdj

vulnerability	VCID-usvm-2xea-ffd6

vulnerability	VCID-uyu5-b3md-37cm

vulnerability	VCID-x1xm-1qpa-u7c1

vulnerability	VCID-x688-21pv-7yf8

vulnerability	VCID-ywwf-hc75-nbdm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
purl	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.101-1%3Fdistro=trixie

aliases CVE-2024-3844

risk_score 1.9

exploitability 0.5

weighted_severity 3.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1hju-8srd-57bg

url VCID-83ge-9gkd-vbdb

vulnerability_id VCID-83ge-9gkd-vbdb

summary Inappropriate implementation in Prompts in Google Chrome prior to 124.0.6367.60 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-3846

reference_id

reference_type

scores

value	0.00901
scoring_system	epss
scoring_elements	0.75619
published_at	2026-04-02T12:55:00Z

value	0.00901
scoring_system	epss
scoring_elements	0.75702
published_at	2026-04-21T12:55:00Z

value	0.00901
scoring_system	epss
scoring_elements	0.75716
published_at	2026-04-18T12:55:00Z

value	0.00901
scoring_system	epss
scoring_elements	0.75713
published_at	2026-04-16T12:55:00Z

value	0.00901
scoring_system	epss
scoring_elements	0.75681
published_at	2026-04-12T12:55:00Z

value	0.00901
scoring_system	epss
scoring_elements	0.757
published_at	2026-04-11T12:55:00Z

value	0.00901
scoring_system	epss
scoring_elements	0.75675
published_at	2026-04-13T12:55:00Z

value	0.00901
scoring_system	epss
scoring_elements	0.75664
published_at	2026-04-08T12:55:00Z

value	0.00901
scoring_system	epss
scoring_elements	0.7563
published_at	2026-04-07T12:55:00Z

value	0.00901
scoring_system	epss
scoring_elements	0.7565
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-3846

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3846
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3846

reference_url

https://issues.chromium.org/issues/40064754

reference_id

40064754

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-01T16:16:14Z/

url

https://issues.chromium.org/issues/40064754

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T/

reference_id

CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-01T16:16:14Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7/

reference_id

IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-01T16:16:14Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ/

reference_id

M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-01T16:16:14Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6/

reference_id

PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-01T16:16:14Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6/

reference_url

https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.html

reference_id

stable-channel-update-for-desktop_16.html

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-01T16:16:14Z/

url

https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN/

reference_id

UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-01T16:16:14Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO/

reference_id

WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-01T16:16:14Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO/

fixed_packages

url	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
purl	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

purl pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gbt-xkej-k7aw

vulnerability	VCID-2s6k-knqz-s7bv

vulnerability	VCID-32xu-tbuh-nfds

vulnerability	VCID-5znj-k78s-suca

vulnerability	VCID-6dub-gz8z-m3fk

vulnerability	VCID-7gex-zf7d-5ka4

vulnerability	VCID-88yy-dyf6-cue7

vulnerability	VCID-8uaq-e8kp-87fs

vulnerability	VCID-9p5u-1x3q-63dh

vulnerability	VCID-9s6e-p69b-suep

vulnerability	VCID-9sbp-bp4k-23cn

vulnerability	VCID-ehkc-zgaa-23fy

vulnerability	VCID-fene-srh1-b3gp

vulnerability	VCID-jr1y-txur-ebgr

vulnerability	VCID-n5d6-9gwm-vkc7

vulnerability	VCID-pg29-vrqh-pka8

vulnerability	VCID-pgw2-3qy2-5ban

vulnerability	VCID-pmwr-4j1v-s7gu

vulnerability	VCID-ptwz-uax5-mqbq

vulnerability	VCID-pvbx-j8j1-dkb3

vulnerability	VCID-q45n-pmfj-f7ae

vulnerability	VCID-r2b4-pdwz-ybae

vulnerability	VCID-v2gf-rqxb-57ae

vulnerability	VCID-vscd-6s2t-bucr

vulnerability	VCID-xfz2-cwzt-tqhz

vulnerability	VCID-y17q-5gas-jke9

vulnerability	VCID-z8nt-w84w-tkew

vulnerability	VCID-zcq4-z2c5-2ffr

vulnerability	VCID-zrnp-ujpt-tbee

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.153-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
purl	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.177-1%3Fdistro=trixie

url pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

purl pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1sea-z3vg-wfc4

vulnerability	VCID-212t-kjka-pbe4

vulnerability	VCID-3c8j-6wcw-83ax

vulnerability	VCID-47az-428z-bkar

vulnerability	VCID-7x3z-8d6t-vfen

vulnerability	VCID-8j9g-6zs1-13am

vulnerability	VCID-97y1-b8j2-xfb5

vulnerability	VCID-9amk-6z38-qbb1

vulnerability	VCID-9h91-43nj-7qgy

vulnerability	VCID-dzf3-492x-budu

vulnerability	VCID-erxp-a8pr-zyff

vulnerability	VCID-fk6m-8k4f-hyhz

vulnerability	VCID-hyew-s4ya-43bv

vulnerability	VCID-jd9x-rsee-ekfk

vulnerability	VCID-jku3-pwsy-bufq

vulnerability	VCID-jqs4-fgj9-63g7

vulnerability	VCID-k82r-r6dh-qfem

vulnerability	VCID-mjv9-578z-3kej

vulnerability	VCID-mp8f-94vu-jyf9

vulnerability	VCID-my86-8n81-y3hd

vulnerability	VCID-ndkj-5v64-cfa9

vulnerability	VCID-p4dd-y4mm-fqam

vulnerability	VCID-q17c-ud54-5ydd

vulnerability	VCID-qrwz-k5dg-27b2

vulnerability	VCID-thk2-w3k4-jfep

vulnerability	VCID-uded-9de1-xkdj

vulnerability	VCID-usvm-2xea-ffd6

vulnerability	VCID-uyu5-b3md-37cm

vulnerability	VCID-x1xm-1qpa-u7c1

vulnerability	VCID-x688-21pv-7yf8

vulnerability	VCID-ywwf-hc75-nbdm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
purl	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.101-1%3Fdistro=trixie

aliases CVE-2024-3846

risk_score 2.5

exploitability 0.5

weighted_severity 4.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-83ge-9gkd-vbdb

url VCID-as76-9ntp-y3bp

vulnerability_id VCID-as76-9ntp-y3bp

summary Use after free in QUIC in Google Chrome prior to 124.0.6367.60 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-3837

reference_id

reference_type

scores

value	0.00348
scoring_system	epss
scoring_elements	0.57335
published_at	2026-04-07T12:55:00Z

value	0.00348
scoring_system	epss
scoring_elements	0.57385
published_at	2026-04-18T12:55:00Z

value	0.00348
scoring_system	epss
scoring_elements	0.57363
published_at	2026-04-21T12:55:00Z

value	0.00348
scoring_system	epss
scoring_elements	0.57383
published_at	2026-04-12T12:55:00Z

value	0.00348
scoring_system	epss
scoring_elements	0.57404
published_at	2026-04-11T12:55:00Z

value	0.00348
scoring_system	epss
scoring_elements	0.57389
published_at	2026-04-16T12:55:00Z

value	0.00348
scoring_system	epss
scoring_elements	0.57386
published_at	2026-04-08T12:55:00Z

value	0.00348
scoring_system	epss
scoring_elements	0.57358
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-3837

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3837
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3837

reference_url

https://issues.chromium.org/issues/41491379

reference_id

41491379

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T14:30:56Z/

url

https://issues.chromium.org/issues/41491379

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T/

reference_id

CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T14:30:56Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7/

reference_id

IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T14:30:56Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ/

reference_id

M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T14:30:56Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6/

reference_id

PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T14:30:56Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6/

reference_url

https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.html

reference_id

stable-channel-update-for-desktop_16.html

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T14:30:56Z/

url

https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN/

reference_id

UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T14:30:56Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO/

reference_id

WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T14:30:56Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO/

fixed_packages

url	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
purl	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

purl pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gbt-xkej-k7aw

vulnerability	VCID-2s6k-knqz-s7bv

vulnerability	VCID-32xu-tbuh-nfds

vulnerability	VCID-5znj-k78s-suca

vulnerability	VCID-6dub-gz8z-m3fk

vulnerability	VCID-7gex-zf7d-5ka4

vulnerability	VCID-88yy-dyf6-cue7

vulnerability	VCID-8uaq-e8kp-87fs

vulnerability	VCID-9p5u-1x3q-63dh

vulnerability	VCID-9s6e-p69b-suep

vulnerability	VCID-9sbp-bp4k-23cn

vulnerability	VCID-ehkc-zgaa-23fy

vulnerability	VCID-fene-srh1-b3gp

vulnerability	VCID-jr1y-txur-ebgr

vulnerability	VCID-n5d6-9gwm-vkc7

vulnerability	VCID-pg29-vrqh-pka8

vulnerability	VCID-pgw2-3qy2-5ban

vulnerability	VCID-pmwr-4j1v-s7gu

vulnerability	VCID-ptwz-uax5-mqbq

vulnerability	VCID-pvbx-j8j1-dkb3

vulnerability	VCID-q45n-pmfj-f7ae

vulnerability	VCID-r2b4-pdwz-ybae

vulnerability	VCID-v2gf-rqxb-57ae

vulnerability	VCID-vscd-6s2t-bucr

vulnerability	VCID-xfz2-cwzt-tqhz

vulnerability	VCID-y17q-5gas-jke9

vulnerability	VCID-z8nt-w84w-tkew

vulnerability	VCID-zcq4-z2c5-2ffr

vulnerability	VCID-zrnp-ujpt-tbee

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.153-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
purl	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.177-1%3Fdistro=trixie

url pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

purl pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1sea-z3vg-wfc4

vulnerability	VCID-212t-kjka-pbe4

vulnerability	VCID-3c8j-6wcw-83ax

vulnerability	VCID-47az-428z-bkar

vulnerability	VCID-7x3z-8d6t-vfen

vulnerability	VCID-8j9g-6zs1-13am

vulnerability	VCID-97y1-b8j2-xfb5

vulnerability	VCID-9amk-6z38-qbb1

vulnerability	VCID-9h91-43nj-7qgy

vulnerability	VCID-dzf3-492x-budu

vulnerability	VCID-erxp-a8pr-zyff

vulnerability	VCID-fk6m-8k4f-hyhz

vulnerability	VCID-hyew-s4ya-43bv

vulnerability	VCID-jd9x-rsee-ekfk

vulnerability	VCID-jku3-pwsy-bufq

vulnerability	VCID-jqs4-fgj9-63g7

vulnerability	VCID-k82r-r6dh-qfem

vulnerability	VCID-mjv9-578z-3kej

vulnerability	VCID-mp8f-94vu-jyf9

vulnerability	VCID-my86-8n81-y3hd

vulnerability	VCID-ndkj-5v64-cfa9

vulnerability	VCID-p4dd-y4mm-fqam

vulnerability	VCID-q17c-ud54-5ydd

vulnerability	VCID-qrwz-k5dg-27b2

vulnerability	VCID-thk2-w3k4-jfep

vulnerability	VCID-uded-9de1-xkdj

vulnerability	VCID-usvm-2xea-ffd6

vulnerability	VCID-uyu5-b3md-37cm

vulnerability	VCID-x1xm-1qpa-u7c1

vulnerability	VCID-x688-21pv-7yf8

vulnerability	VCID-ywwf-hc75-nbdm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
purl	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.101-1%3Fdistro=trixie

aliases CVE-2024-3837

risk_score 2.6

exploitability 0.5

weighted_severity 5.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-as76-9ntp-y3bp

url VCID-c61j-p3uq-43bx

vulnerability_id VCID-c61j-p3uq-43bx

summary Inappropriate implementation in UI in Google Chrome prior to 124.0.6367.60 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-7019

reference_id

reference_type

scores

value	0.00121
scoring_system	epss
scoring_elements	0.31018
published_at	2026-04-21T12:55:00Z

value	0.00121
scoring_system	epss
scoring_elements	0.3107
published_at	2026-04-16T12:55:00Z

value	0.00121
scoring_system	epss
scoring_elements	0.31051
published_at	2026-04-18T12:55:00Z

value	0.00121
scoring_system	epss
scoring_elements	0.31167
published_at	2026-04-02T12:55:00Z

value	0.00121
scoring_system	epss
scoring_elements	0.31214
published_at	2026-04-04T12:55:00Z

value	0.00121
scoring_system	epss
scoring_elements	0.31034
published_at	2026-04-07T12:55:00Z

value	0.00121
scoring_system	epss
scoring_elements	0.3109
published_at	2026-04-08T12:55:00Z

value	0.00121
scoring_system	epss
scoring_elements	0.3112
published_at	2026-04-09T12:55:00Z

value	0.00121
scoring_system	epss
scoring_elements	0.31127
published_at	2026-04-11T12:55:00Z

value	0.00121
scoring_system	epss
scoring_elements	0.31083
published_at	2026-04-12T12:55:00Z

value	0.00121
scoring_system	epss
scoring_elements	0.31038
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-7019

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7019
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7019

reference_url

https://issues.chromium.org/issues/41494315

reference_id

41494315

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-24T18:33:48Z/

url

https://issues.chromium.org/issues/41494315

fixed_packages

url	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
purl	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

purl pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gbt-xkej-k7aw

vulnerability	VCID-2s6k-knqz-s7bv

vulnerability	VCID-32xu-tbuh-nfds

vulnerability	VCID-5znj-k78s-suca

vulnerability	VCID-6dub-gz8z-m3fk

vulnerability	VCID-7gex-zf7d-5ka4

vulnerability	VCID-88yy-dyf6-cue7

vulnerability	VCID-8uaq-e8kp-87fs

vulnerability	VCID-9p5u-1x3q-63dh

vulnerability	VCID-9s6e-p69b-suep

vulnerability	VCID-9sbp-bp4k-23cn

vulnerability	VCID-ehkc-zgaa-23fy

vulnerability	VCID-fene-srh1-b3gp

vulnerability	VCID-jr1y-txur-ebgr

vulnerability	VCID-n5d6-9gwm-vkc7

vulnerability	VCID-pg29-vrqh-pka8

vulnerability	VCID-pgw2-3qy2-5ban

vulnerability	VCID-pmwr-4j1v-s7gu

vulnerability	VCID-ptwz-uax5-mqbq

vulnerability	VCID-pvbx-j8j1-dkb3

vulnerability	VCID-q45n-pmfj-f7ae

vulnerability	VCID-r2b4-pdwz-ybae

vulnerability	VCID-v2gf-rqxb-57ae

vulnerability	VCID-vscd-6s2t-bucr

vulnerability	VCID-xfz2-cwzt-tqhz

vulnerability	VCID-y17q-5gas-jke9

vulnerability	VCID-z8nt-w84w-tkew

vulnerability	VCID-zcq4-z2c5-2ffr

vulnerability	VCID-zrnp-ujpt-tbee

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.153-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
purl	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.177-1%3Fdistro=trixie

url pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

purl pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1sea-z3vg-wfc4

vulnerability	VCID-212t-kjka-pbe4

vulnerability	VCID-3c8j-6wcw-83ax

vulnerability	VCID-47az-428z-bkar

vulnerability	VCID-7x3z-8d6t-vfen

vulnerability	VCID-8j9g-6zs1-13am

vulnerability	VCID-97y1-b8j2-xfb5

vulnerability	VCID-9amk-6z38-qbb1

vulnerability	VCID-9h91-43nj-7qgy

vulnerability	VCID-dzf3-492x-budu

vulnerability	VCID-erxp-a8pr-zyff

vulnerability	VCID-fk6m-8k4f-hyhz

vulnerability	VCID-hyew-s4ya-43bv

vulnerability	VCID-jd9x-rsee-ekfk

vulnerability	VCID-jku3-pwsy-bufq

vulnerability	VCID-jqs4-fgj9-63g7

vulnerability	VCID-k82r-r6dh-qfem

vulnerability	VCID-mjv9-578z-3kej

vulnerability	VCID-mp8f-94vu-jyf9

vulnerability	VCID-my86-8n81-y3hd

vulnerability	VCID-ndkj-5v64-cfa9

vulnerability	VCID-p4dd-y4mm-fqam

vulnerability	VCID-q17c-ud54-5ydd

vulnerability	VCID-qrwz-k5dg-27b2

vulnerability	VCID-thk2-w3k4-jfep

vulnerability	VCID-uded-9de1-xkdj

vulnerability	VCID-usvm-2xea-ffd6

vulnerability	VCID-uyu5-b3md-37cm

vulnerability	VCID-x1xm-1qpa-u7c1

vulnerability	VCID-x688-21pv-7yf8

vulnerability	VCID-ywwf-hc75-nbdm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
purl	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.101-1%3Fdistro=trixie

aliases CVE-2024-7019

risk_score 1.1

exploitability 0.5

weighted_severity 2.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-c61j-p3uq-43bx

url VCID-d4gt-rndb-wbat

vulnerability_id VCID-d4gt-rndb-wbat

summary Out of bounds read in Fonts in Google Chrome prior to 124.0.6367.60 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-3839

reference_id

reference_type

scores

value	0.00196
scoring_system	epss
scoring_elements	0.41582
published_at	2026-04-09T12:55:00Z

value	0.00196
scoring_system	epss
scoring_elements	0.41576
published_at	2026-04-18T12:55:00Z

value	0.00196
scoring_system	epss
scoring_elements	0.41602
published_at	2026-04-16T12:55:00Z

value	0.00196
scoring_system	epss
scoring_elements	0.41556
published_at	2026-04-13T12:55:00Z

value	0.00196
scoring_system	epss
scoring_elements	0.4157
published_at	2026-04-12T12:55:00Z

value	0.00196
scoring_system	epss
scoring_elements	0.41603
published_at	2026-04-11T12:55:00Z

value	0.00196
scoring_system	epss
scoring_elements	0.41568
published_at	2026-04-02T12:55:00Z

value	0.00196
scoring_system	epss
scoring_elements	0.41596
published_at	2026-04-04T12:55:00Z

value	0.00196
scoring_system	epss
scoring_elements	0.41523
published_at	2026-04-07T12:55:00Z

value	0.00196
scoring_system	epss
scoring_elements	0.41573
published_at	2026-04-08T12:55:00Z

value	0.00196
scoring_system	epss
scoring_elements	0.415
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-3839

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3839
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3839

reference_url

https://issues.chromium.org/issues/41491859

reference_id

41491859

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-23T18:56:16Z/

url

https://issues.chromium.org/issues/41491859

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T/

reference_id

CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-23T18:56:16Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7/

reference_id

IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-23T18:56:16Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ/

reference_id

M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-23T18:56:16Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6/

reference_id

PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-23T18:56:16Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6/

reference_url

https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.html

reference_id

stable-channel-update-for-desktop_16.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-23T18:56:16Z/

url

https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN/

reference_id

UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-23T18:56:16Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO/

reference_id

WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-23T18:56:16Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO/

fixed_packages

url	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
purl	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

purl pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gbt-xkej-k7aw

vulnerability	VCID-2s6k-knqz-s7bv

vulnerability	VCID-32xu-tbuh-nfds

vulnerability	VCID-5znj-k78s-suca

vulnerability	VCID-6dub-gz8z-m3fk

vulnerability	VCID-7gex-zf7d-5ka4

vulnerability	VCID-88yy-dyf6-cue7

vulnerability	VCID-8uaq-e8kp-87fs

vulnerability	VCID-9p5u-1x3q-63dh

vulnerability	VCID-9s6e-p69b-suep

vulnerability	VCID-9sbp-bp4k-23cn

vulnerability	VCID-ehkc-zgaa-23fy

vulnerability	VCID-fene-srh1-b3gp

vulnerability	VCID-jr1y-txur-ebgr

vulnerability	VCID-n5d6-9gwm-vkc7

vulnerability	VCID-pg29-vrqh-pka8

vulnerability	VCID-pgw2-3qy2-5ban

vulnerability	VCID-pmwr-4j1v-s7gu

vulnerability	VCID-ptwz-uax5-mqbq

vulnerability	VCID-pvbx-j8j1-dkb3

vulnerability	VCID-q45n-pmfj-f7ae

vulnerability	VCID-r2b4-pdwz-ybae

vulnerability	VCID-v2gf-rqxb-57ae

vulnerability	VCID-vscd-6s2t-bucr

vulnerability	VCID-xfz2-cwzt-tqhz

vulnerability	VCID-y17q-5gas-jke9

vulnerability	VCID-z8nt-w84w-tkew

vulnerability	VCID-zcq4-z2c5-2ffr

vulnerability	VCID-zrnp-ujpt-tbee

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.153-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
purl	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.177-1%3Fdistro=trixie

url pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

purl pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1sea-z3vg-wfc4

vulnerability	VCID-212t-kjka-pbe4

vulnerability	VCID-3c8j-6wcw-83ax

vulnerability	VCID-47az-428z-bkar

vulnerability	VCID-7x3z-8d6t-vfen

vulnerability	VCID-8j9g-6zs1-13am

vulnerability	VCID-97y1-b8j2-xfb5

vulnerability	VCID-9amk-6z38-qbb1

vulnerability	VCID-9h91-43nj-7qgy

vulnerability	VCID-dzf3-492x-budu

vulnerability	VCID-erxp-a8pr-zyff

vulnerability	VCID-fk6m-8k4f-hyhz

vulnerability	VCID-hyew-s4ya-43bv

vulnerability	VCID-jd9x-rsee-ekfk

vulnerability	VCID-jku3-pwsy-bufq

vulnerability	VCID-jqs4-fgj9-63g7

vulnerability	VCID-k82r-r6dh-qfem

vulnerability	VCID-mjv9-578z-3kej

vulnerability	VCID-mp8f-94vu-jyf9

vulnerability	VCID-my86-8n81-y3hd

vulnerability	VCID-ndkj-5v64-cfa9

vulnerability	VCID-p4dd-y4mm-fqam

vulnerability	VCID-q17c-ud54-5ydd

vulnerability	VCID-qrwz-k5dg-27b2

vulnerability	VCID-thk2-w3k4-jfep

vulnerability	VCID-uded-9de1-xkdj

vulnerability	VCID-usvm-2xea-ffd6

vulnerability	VCID-uyu5-b3md-37cm

vulnerability	VCID-x1xm-1qpa-u7c1

vulnerability	VCID-x688-21pv-7yf8

vulnerability	VCID-ywwf-hc75-nbdm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
purl	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.101-1%3Fdistro=trixie

aliases CVE-2024-3839

risk_score 3.0

exploitability 0.5

weighted_severity 5.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-d4gt-rndb-wbat

url VCID-fazb-vu1j-qkcg

vulnerability_id VCID-fazb-vu1j-qkcg

summary Insufficient policy enforcement in Site Isolation in Google Chrome prior to 124.0.6367.60 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Medium)

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-3840

reference_id

reference_type

scores

value	0.00181
scoring_system	epss
scoring_elements	0.3989
published_at	2026-04-16T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.39862
published_at	2026-04-18T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.3984
published_at	2026-04-13T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.39857
published_at	2026-04-12T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.39891
published_at	2026-04-11T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.39881
published_at	2026-04-09T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.39868
published_at	2026-04-08T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.39813
published_at	2026-04-07T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.39782
published_at	2026-04-21T12:55:00Z

value	0.00237
scoring_system	epss
scoring_elements	0.46798
published_at	2026-04-02T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-3840

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3840
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3840

reference_url

https://issues.chromium.org/issues/41493458

reference_id

41493458

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T19:32:03Z/

url

https://issues.chromium.org/issues/41493458

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T/

reference_id

CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T19:32:03Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7/

reference_id

IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T19:32:03Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ/

reference_id

M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T19:32:03Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6/

reference_id

PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T19:32:03Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6/

reference_url

https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.html

reference_id

stable-channel-update-for-desktop_16.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T19:32:03Z/

url

https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN/

reference_id

UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T19:32:03Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO/

reference_id

WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T19:32:03Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO/

fixed_packages

url	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
purl	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

purl pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gbt-xkej-k7aw

vulnerability	VCID-2s6k-knqz-s7bv

vulnerability	VCID-32xu-tbuh-nfds

vulnerability	VCID-5znj-k78s-suca

vulnerability	VCID-6dub-gz8z-m3fk

vulnerability	VCID-7gex-zf7d-5ka4

vulnerability	VCID-88yy-dyf6-cue7

vulnerability	VCID-8uaq-e8kp-87fs

vulnerability	VCID-9p5u-1x3q-63dh

vulnerability	VCID-9s6e-p69b-suep

vulnerability	VCID-9sbp-bp4k-23cn

vulnerability	VCID-ehkc-zgaa-23fy

vulnerability	VCID-fene-srh1-b3gp

vulnerability	VCID-jr1y-txur-ebgr

vulnerability	VCID-n5d6-9gwm-vkc7

vulnerability	VCID-pg29-vrqh-pka8

vulnerability	VCID-pgw2-3qy2-5ban

vulnerability	VCID-pmwr-4j1v-s7gu

vulnerability	VCID-ptwz-uax5-mqbq

vulnerability	VCID-pvbx-j8j1-dkb3

vulnerability	VCID-q45n-pmfj-f7ae

vulnerability	VCID-r2b4-pdwz-ybae

vulnerability	VCID-v2gf-rqxb-57ae

vulnerability	VCID-vscd-6s2t-bucr

vulnerability	VCID-xfz2-cwzt-tqhz

vulnerability	VCID-y17q-5gas-jke9

vulnerability	VCID-z8nt-w84w-tkew

vulnerability	VCID-zcq4-z2c5-2ffr

vulnerability	VCID-zrnp-ujpt-tbee

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.153-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
purl	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.177-1%3Fdistro=trixie

url pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

purl pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1sea-z3vg-wfc4

vulnerability	VCID-212t-kjka-pbe4

vulnerability	VCID-3c8j-6wcw-83ax

vulnerability	VCID-47az-428z-bkar

vulnerability	VCID-7x3z-8d6t-vfen

vulnerability	VCID-8j9g-6zs1-13am

vulnerability	VCID-97y1-b8j2-xfb5

vulnerability	VCID-9amk-6z38-qbb1

vulnerability	VCID-9h91-43nj-7qgy

vulnerability	VCID-dzf3-492x-budu

vulnerability	VCID-erxp-a8pr-zyff

vulnerability	VCID-fk6m-8k4f-hyhz

vulnerability	VCID-hyew-s4ya-43bv

vulnerability	VCID-jd9x-rsee-ekfk

vulnerability	VCID-jku3-pwsy-bufq

vulnerability	VCID-jqs4-fgj9-63g7

vulnerability	VCID-k82r-r6dh-qfem

vulnerability	VCID-mjv9-578z-3kej

vulnerability	VCID-mp8f-94vu-jyf9

vulnerability	VCID-my86-8n81-y3hd

vulnerability	VCID-ndkj-5v64-cfa9

vulnerability	VCID-p4dd-y4mm-fqam

vulnerability	VCID-q17c-ud54-5ydd

vulnerability	VCID-qrwz-k5dg-27b2

vulnerability	VCID-thk2-w3k4-jfep

vulnerability	VCID-uded-9de1-xkdj

vulnerability	VCID-usvm-2xea-ffd6

vulnerability	VCID-uyu5-b3md-37cm

vulnerability	VCID-x1xm-1qpa-u7c1

vulnerability	VCID-x688-21pv-7yf8

vulnerability	VCID-ywwf-hc75-nbdm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
purl	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.101-1%3Fdistro=trixie

aliases CVE-2024-3840

risk_score 3.0

exploitability 0.5

weighted_severity 5.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fazb-vu1j-qkcg

url VCID-j736-y8am-xbah

vulnerability_id VCID-j736-y8am-xbah

summary Multiple vulnerabilities have been discovered in Chromium and its derivatives, the worst of which can lead to remote code execution.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-3832

reference_id

reference_type

scores

value	0.05754
scoring_system	epss
scoring_elements	0.90474
published_at	2026-04-21T12:55:00Z

value	0.05754
scoring_system	epss
scoring_elements	0.90425
published_at	2026-04-02T12:55:00Z

value	0.05754
scoring_system	epss
scoring_elements	0.90437
published_at	2026-04-04T12:55:00Z

value	0.05754
scoring_system	epss
scoring_elements	0.90441
published_at	2026-04-07T12:55:00Z

value	0.05754
scoring_system	epss
scoring_elements	0.90455
published_at	2026-04-08T12:55:00Z

value	0.05754
scoring_system	epss
scoring_elements	0.90461
published_at	2026-04-09T12:55:00Z

value	0.05754
scoring_system	epss
scoring_elements	0.90468
published_at	2026-04-11T12:55:00Z

value	0.05754
scoring_system	epss
scoring_elements	0.90469
published_at	2026-04-12T12:55:00Z

value	0.05754
scoring_system	epss
scoring_elements	0.90462
published_at	2026-04-13T12:55:00Z

value	0.05754
scoring_system	epss
scoring_elements	0.90477
published_at	2026-04-16T12:55:00Z

value	0.05754
scoring_system	epss
scoring_elements	0.90476
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-3832

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3832
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3832

reference_url

https://issues.chromium.org/issues/331358160

reference_id

331358160

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-14T20:00:59Z/

url

https://issues.chromium.org/issues/331358160

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T/

reference_id

CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-14T20:00:59Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T/

reference_url	https://security.gentoo.org/glsa/202412-05
reference_id	GLSA-202412-05
reference_type
scores
url	https://security.gentoo.org/glsa/202412-05

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6/

reference_id

PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-14T20:00:59Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6/

reference_url

https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.html

reference_id

stable-channel-update-for-desktop_16.html

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-14T20:00:59Z/

url

https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO/

reference_id

WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-14T20:00:59Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO/

fixed_packages

url	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
purl	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

purl pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gbt-xkej-k7aw

vulnerability	VCID-2s6k-knqz-s7bv

vulnerability	VCID-32xu-tbuh-nfds

vulnerability	VCID-5znj-k78s-suca

vulnerability	VCID-6dub-gz8z-m3fk

vulnerability	VCID-7gex-zf7d-5ka4

vulnerability	VCID-88yy-dyf6-cue7

vulnerability	VCID-8uaq-e8kp-87fs

vulnerability	VCID-9p5u-1x3q-63dh

vulnerability	VCID-9s6e-p69b-suep

vulnerability	VCID-9sbp-bp4k-23cn

vulnerability	VCID-ehkc-zgaa-23fy

vulnerability	VCID-fene-srh1-b3gp

vulnerability	VCID-jr1y-txur-ebgr

vulnerability	VCID-n5d6-9gwm-vkc7

vulnerability	VCID-pg29-vrqh-pka8

vulnerability	VCID-pgw2-3qy2-5ban

vulnerability	VCID-pmwr-4j1v-s7gu

vulnerability	VCID-ptwz-uax5-mqbq

vulnerability	VCID-pvbx-j8j1-dkb3

vulnerability	VCID-q45n-pmfj-f7ae

vulnerability	VCID-r2b4-pdwz-ybae

vulnerability	VCID-v2gf-rqxb-57ae

vulnerability	VCID-vscd-6s2t-bucr

vulnerability	VCID-xfz2-cwzt-tqhz

vulnerability	VCID-y17q-5gas-jke9

vulnerability	VCID-z8nt-w84w-tkew

vulnerability	VCID-zcq4-z2c5-2ffr

vulnerability	VCID-zrnp-ujpt-tbee

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.153-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
purl	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.177-1%3Fdistro=trixie

url pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

purl pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1sea-z3vg-wfc4

vulnerability	VCID-212t-kjka-pbe4

vulnerability	VCID-3c8j-6wcw-83ax

vulnerability	VCID-47az-428z-bkar

vulnerability	VCID-7x3z-8d6t-vfen

vulnerability	VCID-8j9g-6zs1-13am

vulnerability	VCID-97y1-b8j2-xfb5

vulnerability	VCID-9amk-6z38-qbb1

vulnerability	VCID-9h91-43nj-7qgy

vulnerability	VCID-dzf3-492x-budu

vulnerability	VCID-erxp-a8pr-zyff

vulnerability	VCID-fk6m-8k4f-hyhz

vulnerability	VCID-hyew-s4ya-43bv

vulnerability	VCID-jd9x-rsee-ekfk

vulnerability	VCID-jku3-pwsy-bufq

vulnerability	VCID-jqs4-fgj9-63g7

vulnerability	VCID-k82r-r6dh-qfem

vulnerability	VCID-mjv9-578z-3kej

vulnerability	VCID-mp8f-94vu-jyf9

vulnerability	VCID-my86-8n81-y3hd

vulnerability	VCID-ndkj-5v64-cfa9

vulnerability	VCID-p4dd-y4mm-fqam

vulnerability	VCID-q17c-ud54-5ydd

vulnerability	VCID-qrwz-k5dg-27b2

vulnerability	VCID-thk2-w3k4-jfep

vulnerability	VCID-uded-9de1-xkdj

vulnerability	VCID-usvm-2xea-ffd6

vulnerability	VCID-uyu5-b3md-37cm

vulnerability	VCID-x1xm-1qpa-u7c1

vulnerability	VCID-x688-21pv-7yf8

vulnerability	VCID-ywwf-hc75-nbdm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
purl	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.101-1%3Fdistro=trixie

aliases CVE-2024-3832

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-j736-y8am-xbah

url VCID-kcsu-b91y-t7g5

vulnerability_id VCID-kcsu-b91y-t7g5

summary Multiple vulnerabilities have been discovered in Chromium and its derivatives, the worst of which can lead to remote code execution.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-3834

reference_id

reference_type

scores

value	0.0045
scoring_system	epss
scoring_elements	0.63623
published_at	2026-04-02T12:55:00Z

value	0.0045
scoring_system	epss
scoring_elements	0.63673
published_at	2026-04-21T12:55:00Z

value	0.0045
scoring_system	epss
scoring_elements	0.6369
published_at	2026-04-18T12:55:00Z

value	0.0045
scoring_system	epss
scoring_elements	0.6368
published_at	2026-04-16T12:55:00Z

value	0.0045
scoring_system	epss
scoring_elements	0.63644
published_at	2026-04-13T12:55:00Z

value	0.0045
scoring_system	epss
scoring_elements	0.63692
published_at	2026-04-11T12:55:00Z

value	0.0045
scoring_system	epss
scoring_elements	0.63677
published_at	2026-04-12T12:55:00Z

value	0.0045
scoring_system	epss
scoring_elements	0.63661
published_at	2026-04-08T12:55:00Z

value	0.0045
scoring_system	epss
scoring_elements	0.63609
published_at	2026-04-07T12:55:00Z

value	0.0045
scoring_system	epss
scoring_elements	0.6365
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-3834

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3834
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3834

reference_url

https://issues.chromium.org/issues/326607008

reference_id

326607008

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-12T19:24:24Z/

url

https://issues.chromium.org/issues/326607008

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T/

reference_id

CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-12T19:24:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T/

reference_url	https://security.gentoo.org/glsa/202412-05
reference_id	GLSA-202412-05
reference_type
scores
url	https://security.gentoo.org/glsa/202412-05

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7/

reference_id

IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-12T19:24:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ/

reference_id

M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-12T19:24:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6/

reference_id

PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-12T19:24:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6/

reference_url

https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.html

reference_id

stable-channel-update-for-desktop_16.html

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-12T19:24:24Z/

url

https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN/

reference_id

UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-12T19:24:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO/

reference_id

WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-12T19:24:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO/

fixed_packages

url	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
purl	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

purl pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gbt-xkej-k7aw

vulnerability	VCID-2s6k-knqz-s7bv

vulnerability	VCID-32xu-tbuh-nfds

vulnerability	VCID-5znj-k78s-suca

vulnerability	VCID-6dub-gz8z-m3fk

vulnerability	VCID-7gex-zf7d-5ka4

vulnerability	VCID-88yy-dyf6-cue7

vulnerability	VCID-8uaq-e8kp-87fs

vulnerability	VCID-9p5u-1x3q-63dh

vulnerability	VCID-9s6e-p69b-suep

vulnerability	VCID-9sbp-bp4k-23cn

vulnerability	VCID-ehkc-zgaa-23fy

vulnerability	VCID-fene-srh1-b3gp

vulnerability	VCID-jr1y-txur-ebgr

vulnerability	VCID-n5d6-9gwm-vkc7

vulnerability	VCID-pg29-vrqh-pka8

vulnerability	VCID-pgw2-3qy2-5ban

vulnerability	VCID-pmwr-4j1v-s7gu

vulnerability	VCID-ptwz-uax5-mqbq

vulnerability	VCID-pvbx-j8j1-dkb3

vulnerability	VCID-q45n-pmfj-f7ae

vulnerability	VCID-r2b4-pdwz-ybae

vulnerability	VCID-v2gf-rqxb-57ae

vulnerability	VCID-vscd-6s2t-bucr

vulnerability	VCID-xfz2-cwzt-tqhz

vulnerability	VCID-y17q-5gas-jke9

vulnerability	VCID-z8nt-w84w-tkew

vulnerability	VCID-zcq4-z2c5-2ffr

vulnerability	VCID-zrnp-ujpt-tbee

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.153-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
purl	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.177-1%3Fdistro=trixie

url pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

purl pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1sea-z3vg-wfc4

vulnerability	VCID-212t-kjka-pbe4

vulnerability	VCID-3c8j-6wcw-83ax

vulnerability	VCID-47az-428z-bkar

vulnerability	VCID-7x3z-8d6t-vfen

vulnerability	VCID-8j9g-6zs1-13am

vulnerability	VCID-97y1-b8j2-xfb5

vulnerability	VCID-9amk-6z38-qbb1

vulnerability	VCID-9h91-43nj-7qgy

vulnerability	VCID-dzf3-492x-budu

vulnerability	VCID-erxp-a8pr-zyff

vulnerability	VCID-fk6m-8k4f-hyhz

vulnerability	VCID-hyew-s4ya-43bv

vulnerability	VCID-jd9x-rsee-ekfk

vulnerability	VCID-jku3-pwsy-bufq

vulnerability	VCID-jqs4-fgj9-63g7

vulnerability	VCID-k82r-r6dh-qfem

vulnerability	VCID-mjv9-578z-3kej

vulnerability	VCID-mp8f-94vu-jyf9

vulnerability	VCID-my86-8n81-y3hd

vulnerability	VCID-ndkj-5v64-cfa9

vulnerability	VCID-p4dd-y4mm-fqam

vulnerability	VCID-q17c-ud54-5ydd

vulnerability	VCID-qrwz-k5dg-27b2

vulnerability	VCID-thk2-w3k4-jfep

vulnerability	VCID-uded-9de1-xkdj

vulnerability	VCID-usvm-2xea-ffd6

vulnerability	VCID-uyu5-b3md-37cm

vulnerability	VCID-x1xm-1qpa-u7c1

vulnerability	VCID-x688-21pv-7yf8

vulnerability	VCID-ywwf-hc75-nbdm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
purl	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.101-1%3Fdistro=trixie

aliases CVE-2024-3834

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kcsu-b91y-t7g5

url VCID-m947-x8gn-dybn

vulnerability_id VCID-m947-x8gn-dybn

summary Inappropriate implementation in Autofill in Google Chrome prior to 124.0.6367.60 allowed an attacker who convinced a user to install a malicious app to perform UI spoofing via a crafted app. (Chromium security severity: Medium)

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-3838

reference_id

reference_type

scores

value	0.00215
scoring_system	epss
scoring_elements	0.44079
published_at	2026-04-11T12:55:00Z

value	0.00215
scoring_system	epss
scoring_elements	0.44017
published_at	2026-04-21T12:55:00Z

value	0.00215
scoring_system	epss
scoring_elements	0.44083
published_at	2026-04-18T12:55:00Z

value	0.00215
scoring_system	epss
scoring_elements	0.44092
published_at	2026-04-16T12:55:00Z

value	0.00215
scoring_system	epss
scoring_elements	0.4403
published_at	2026-04-13T12:55:00Z

value	0.00215
scoring_system	epss
scoring_elements	0.44046
published_at	2026-04-12T12:55:00Z

value	0.00215
scoring_system	epss
scoring_elements	0.44063
published_at	2026-04-09T12:55:00Z

value	0.00215
scoring_system	epss
scoring_elements	0.44061
published_at	2026-04-08T12:55:00Z

value	0.00215
scoring_system	epss
scoring_elements	0.4401
published_at	2026-04-07T12:55:00Z

value	0.00221
scoring_system	epss
scoring_elements	0.44755
published_at	2026-04-02T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-3838

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3838
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3838

reference_url

https://issues.chromium.org/issues/328278717

reference_id

328278717

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T15:29:04Z/

url

https://issues.chromium.org/issues/328278717

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T/

reference_id

CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T15:29:04Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6/

reference_id

PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T15:29:04Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6/

reference_url

https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.html

reference_id

stable-channel-update-for-desktop_16.html

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T15:29:04Z/

url

https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO/

reference_id

WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T15:29:04Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO/

fixed_packages

url	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
purl	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

purl pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gbt-xkej-k7aw

vulnerability	VCID-2s6k-knqz-s7bv

vulnerability	VCID-32xu-tbuh-nfds

vulnerability	VCID-5znj-k78s-suca

vulnerability	VCID-6dub-gz8z-m3fk

vulnerability	VCID-7gex-zf7d-5ka4

vulnerability	VCID-88yy-dyf6-cue7

vulnerability	VCID-8uaq-e8kp-87fs

vulnerability	VCID-9p5u-1x3q-63dh

vulnerability	VCID-9s6e-p69b-suep

vulnerability	VCID-9sbp-bp4k-23cn

vulnerability	VCID-ehkc-zgaa-23fy

vulnerability	VCID-fene-srh1-b3gp

vulnerability	VCID-jr1y-txur-ebgr

vulnerability	VCID-n5d6-9gwm-vkc7

vulnerability	VCID-pg29-vrqh-pka8

vulnerability	VCID-pgw2-3qy2-5ban

vulnerability	VCID-pmwr-4j1v-s7gu

vulnerability	VCID-ptwz-uax5-mqbq

vulnerability	VCID-pvbx-j8j1-dkb3

vulnerability	VCID-q45n-pmfj-f7ae

vulnerability	VCID-r2b4-pdwz-ybae

vulnerability	VCID-v2gf-rqxb-57ae

vulnerability	VCID-vscd-6s2t-bucr

vulnerability	VCID-xfz2-cwzt-tqhz

vulnerability	VCID-y17q-5gas-jke9

vulnerability	VCID-z8nt-w84w-tkew

vulnerability	VCID-zcq4-z2c5-2ffr

vulnerability	VCID-zrnp-ujpt-tbee

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.153-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
purl	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.177-1%3Fdistro=trixie

url pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

purl pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1sea-z3vg-wfc4

vulnerability	VCID-212t-kjka-pbe4

vulnerability	VCID-3c8j-6wcw-83ax

vulnerability	VCID-47az-428z-bkar

vulnerability	VCID-7x3z-8d6t-vfen

vulnerability	VCID-8j9g-6zs1-13am

vulnerability	VCID-97y1-b8j2-xfb5

vulnerability	VCID-9amk-6z38-qbb1

vulnerability	VCID-9h91-43nj-7qgy

vulnerability	VCID-dzf3-492x-budu

vulnerability	VCID-erxp-a8pr-zyff

vulnerability	VCID-fk6m-8k4f-hyhz

vulnerability	VCID-hyew-s4ya-43bv

vulnerability	VCID-jd9x-rsee-ekfk

vulnerability	VCID-jku3-pwsy-bufq

vulnerability	VCID-jqs4-fgj9-63g7

vulnerability	VCID-k82r-r6dh-qfem

vulnerability	VCID-mjv9-578z-3kej

vulnerability	VCID-mp8f-94vu-jyf9

vulnerability	VCID-my86-8n81-y3hd

vulnerability	VCID-ndkj-5v64-cfa9

vulnerability	VCID-p4dd-y4mm-fqam

vulnerability	VCID-q17c-ud54-5ydd

vulnerability	VCID-qrwz-k5dg-27b2

vulnerability	VCID-thk2-w3k4-jfep

vulnerability	VCID-uded-9de1-xkdj

vulnerability	VCID-usvm-2xea-ffd6

vulnerability	VCID-uyu5-b3md-37cm

vulnerability	VCID-x1xm-1qpa-u7c1

vulnerability	VCID-x688-21pv-7yf8

vulnerability	VCID-ywwf-hc75-nbdm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
purl	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.101-1%3Fdistro=trixie

aliases CVE-2024-3838

risk_score 1.9

exploitability 0.5

weighted_severity 3.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-m947-x8gn-dybn

url VCID-msy4-5tju-c3ak

vulnerability_id VCID-msy4-5tju-c3ak

summary Inappropriate implementation in Networks in Google Chrome prior to 124.0.6367.60 allowed a remote attacker to bypass mixed content policy via a crafted HTML page. (Chromium security severity: Low)

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-3845

reference_id

reference_type

scores

value	0.00259
scoring_system	epss
scoring_elements	0.49231
published_at	2026-04-02T12:55:00Z

value	0.00259
scoring_system	epss
scoring_elements	0.49271
published_at	2026-04-21T12:55:00Z

value	0.00259
scoring_system	epss
scoring_elements	0.49301
published_at	2026-04-18T12:55:00Z

value	0.00259
scoring_system	epss
scoring_elements	0.49305
published_at	2026-04-16T12:55:00Z

value	0.00259
scoring_system	epss
scoring_elements	0.49258
published_at	2026-04-13T12:55:00Z

value	0.00259
scoring_system	epss
scoring_elements	0.49253
published_at	2026-04-12T12:55:00Z

value	0.00259
scoring_system	epss
scoring_elements	0.4928
published_at	2026-04-11T12:55:00Z

value	0.00259
scoring_system	epss
scoring_elements	0.49262
published_at	2026-04-09T12:55:00Z

value	0.00259
scoring_system	epss
scoring_elements	0.49266
published_at	2026-04-08T12:55:00Z

value	0.00259
scoring_system	epss
scoring_elements	0.49211
published_at	2026-04-07T12:55:00Z

value	0.00259
scoring_system	epss
scoring_elements	0.49259
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-3845

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3845
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3845

reference_url

https://issues.chromium.org/issues/323583084

reference_id

323583084

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-05-07T17:50:32Z/

url

https://issues.chromium.org/issues/323583084

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T/

reference_id

CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-05-07T17:50:32Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7/

reference_id

IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-05-07T17:50:32Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ/

reference_id

M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-05-07T17:50:32Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6/

reference_id

PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-05-07T17:50:32Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6/

reference_url

https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.html

reference_id

stable-channel-update-for-desktop_16.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-05-07T17:50:32Z/

url

https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN/

reference_id

UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-05-07T17:50:32Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO/

reference_id

WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-05-07T17:50:32Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO/

fixed_packages

url	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
purl	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

purl pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gbt-xkej-k7aw

vulnerability	VCID-2s6k-knqz-s7bv

vulnerability	VCID-32xu-tbuh-nfds

vulnerability	VCID-5znj-k78s-suca

vulnerability	VCID-6dub-gz8z-m3fk

vulnerability	VCID-7gex-zf7d-5ka4

vulnerability	VCID-88yy-dyf6-cue7

vulnerability	VCID-8uaq-e8kp-87fs

vulnerability	VCID-9p5u-1x3q-63dh

vulnerability	VCID-9s6e-p69b-suep

vulnerability	VCID-9sbp-bp4k-23cn

vulnerability	VCID-ehkc-zgaa-23fy

vulnerability	VCID-fene-srh1-b3gp

vulnerability	VCID-jr1y-txur-ebgr

vulnerability	VCID-n5d6-9gwm-vkc7

vulnerability	VCID-pg29-vrqh-pka8

vulnerability	VCID-pgw2-3qy2-5ban

vulnerability	VCID-pmwr-4j1v-s7gu

vulnerability	VCID-ptwz-uax5-mqbq

vulnerability	VCID-pvbx-j8j1-dkb3

vulnerability	VCID-q45n-pmfj-f7ae

vulnerability	VCID-r2b4-pdwz-ybae

vulnerability	VCID-v2gf-rqxb-57ae

vulnerability	VCID-vscd-6s2t-bucr

vulnerability	VCID-xfz2-cwzt-tqhz

vulnerability	VCID-y17q-5gas-jke9

vulnerability	VCID-z8nt-w84w-tkew

vulnerability	VCID-zcq4-z2c5-2ffr

vulnerability	VCID-zrnp-ujpt-tbee

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.153-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
purl	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.177-1%3Fdistro=trixie

url pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

purl pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1sea-z3vg-wfc4

vulnerability	VCID-212t-kjka-pbe4

vulnerability	VCID-3c8j-6wcw-83ax

vulnerability	VCID-47az-428z-bkar

vulnerability	VCID-7x3z-8d6t-vfen

vulnerability	VCID-8j9g-6zs1-13am

vulnerability	VCID-97y1-b8j2-xfb5

vulnerability	VCID-9amk-6z38-qbb1

vulnerability	VCID-9h91-43nj-7qgy

vulnerability	VCID-dzf3-492x-budu

vulnerability	VCID-erxp-a8pr-zyff

vulnerability	VCID-fk6m-8k4f-hyhz

vulnerability	VCID-hyew-s4ya-43bv

vulnerability	VCID-jd9x-rsee-ekfk

vulnerability	VCID-jku3-pwsy-bufq

vulnerability	VCID-jqs4-fgj9-63g7

vulnerability	VCID-k82r-r6dh-qfem

vulnerability	VCID-mjv9-578z-3kej

vulnerability	VCID-mp8f-94vu-jyf9

vulnerability	VCID-my86-8n81-y3hd

vulnerability	VCID-ndkj-5v64-cfa9

vulnerability	VCID-p4dd-y4mm-fqam

vulnerability	VCID-q17c-ud54-5ydd

vulnerability	VCID-qrwz-k5dg-27b2

vulnerability	VCID-thk2-w3k4-jfep

vulnerability	VCID-uded-9de1-xkdj

vulnerability	VCID-usvm-2xea-ffd6

vulnerability	VCID-uyu5-b3md-37cm

vulnerability	VCID-x1xm-1qpa-u7c1

vulnerability	VCID-x688-21pv-7yf8

vulnerability	VCID-ywwf-hc75-nbdm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
purl	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.101-1%3Fdistro=trixie

aliases CVE-2024-3845

risk_score 4.4

exploitability 0.5

weighted_severity 8.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-msy4-5tju-c3ak

url VCID-p3ts-q4qw-1qch

vulnerability_id VCID-p3ts-q4qw-1qch

summary Insufficient data validation in Browser Switcher in Google Chrome prior to 124.0.6367.60 allowed a remote attacker to inject scripts or HTML into a privileged page via a malicious file. (Chromium security severity: Medium)

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-3841

reference_id

reference_type

scores

value	0.00311
scoring_system	epss
scoring_elements	0.5427
published_at	2026-04-02T12:55:00Z

value	0.00311
scoring_system	epss
scoring_elements	0.54357
published_at	2026-04-21T12:55:00Z

value	0.00311
scoring_system	epss
scoring_elements	0.54377
published_at	2026-04-18T12:55:00Z

value	0.00311
scoring_system	epss
scoring_elements	0.54334
published_at	2026-04-13T12:55:00Z

value	0.00311
scoring_system	epss
scoring_elements	0.54355
published_at	2026-04-12T12:55:00Z

value	0.00311
scoring_system	epss
scoring_elements	0.54373
published_at	2026-04-16T12:55:00Z

value	0.00311
scoring_system	epss
scoring_elements	0.54323
published_at	2026-04-09T12:55:00Z

value	0.00311
scoring_system	epss
scoring_elements	0.54328
published_at	2026-04-08T12:55:00Z

value	0.00311
scoring_system	epss
scoring_elements	0.54276
published_at	2026-04-07T12:55:00Z

value	0.00311
scoring_system	epss
scoring_elements	0.543
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-3841

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3841
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3841

reference_url

https://issues.chromium.org/issues/330376742

reference_id

330376742

reference_type

scores

value	7.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-13T18:44:03Z/

url

https://issues.chromium.org/issues/330376742

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T/

reference_id

CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T

reference_type

scores

value	7.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-13T18:44:03Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7/

reference_id

IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7

reference_type

scores

value	7.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-13T18:44:03Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ/

reference_id

M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ

reference_type

scores

value	7.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-13T18:44:03Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6/

reference_id

PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6

reference_type

scores

value	7.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-13T18:44:03Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6/

reference_url

https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.html

reference_id

stable-channel-update-for-desktop_16.html

reference_type

scores

value	7.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-13T18:44:03Z/

url

https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN/

reference_id

UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN

reference_type

scores

value	7.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-13T18:44:03Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO/

reference_id

WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO

reference_type

scores

value	7.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-13T18:44:03Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO/

fixed_packages

url	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
purl	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

purl pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gbt-xkej-k7aw

vulnerability	VCID-2s6k-knqz-s7bv

vulnerability	VCID-32xu-tbuh-nfds

vulnerability	VCID-5znj-k78s-suca

vulnerability	VCID-6dub-gz8z-m3fk

vulnerability	VCID-7gex-zf7d-5ka4

vulnerability	VCID-88yy-dyf6-cue7

vulnerability	VCID-8uaq-e8kp-87fs

vulnerability	VCID-9p5u-1x3q-63dh

vulnerability	VCID-9s6e-p69b-suep

vulnerability	VCID-9sbp-bp4k-23cn

vulnerability	VCID-ehkc-zgaa-23fy

vulnerability	VCID-fene-srh1-b3gp

vulnerability	VCID-jr1y-txur-ebgr

vulnerability	VCID-n5d6-9gwm-vkc7

vulnerability	VCID-pg29-vrqh-pka8

vulnerability	VCID-pgw2-3qy2-5ban

vulnerability	VCID-pmwr-4j1v-s7gu

vulnerability	VCID-ptwz-uax5-mqbq

vulnerability	VCID-pvbx-j8j1-dkb3

vulnerability	VCID-q45n-pmfj-f7ae

vulnerability	VCID-r2b4-pdwz-ybae

vulnerability	VCID-v2gf-rqxb-57ae

vulnerability	VCID-vscd-6s2t-bucr

vulnerability	VCID-xfz2-cwzt-tqhz

vulnerability	VCID-y17q-5gas-jke9

vulnerability	VCID-z8nt-w84w-tkew

vulnerability	VCID-zcq4-z2c5-2ffr

vulnerability	VCID-zrnp-ujpt-tbee

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.153-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
purl	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.177-1%3Fdistro=trixie

url pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

purl pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1sea-z3vg-wfc4

vulnerability	VCID-212t-kjka-pbe4

vulnerability	VCID-3c8j-6wcw-83ax

vulnerability	VCID-47az-428z-bkar

vulnerability	VCID-7x3z-8d6t-vfen

vulnerability	VCID-8j9g-6zs1-13am

vulnerability	VCID-97y1-b8j2-xfb5

vulnerability	VCID-9amk-6z38-qbb1

vulnerability	VCID-9h91-43nj-7qgy

vulnerability	VCID-dzf3-492x-budu

vulnerability	VCID-erxp-a8pr-zyff

vulnerability	VCID-fk6m-8k4f-hyhz

vulnerability	VCID-hyew-s4ya-43bv

vulnerability	VCID-jd9x-rsee-ekfk

vulnerability	VCID-jku3-pwsy-bufq

vulnerability	VCID-jqs4-fgj9-63g7

vulnerability	VCID-k82r-r6dh-qfem

vulnerability	VCID-mjv9-578z-3kej

vulnerability	VCID-mp8f-94vu-jyf9

vulnerability	VCID-my86-8n81-y3hd

vulnerability	VCID-ndkj-5v64-cfa9

vulnerability	VCID-p4dd-y4mm-fqam

vulnerability	VCID-q17c-ud54-5ydd

vulnerability	VCID-qrwz-k5dg-27b2

vulnerability	VCID-thk2-w3k4-jfep

vulnerability	VCID-uded-9de1-xkdj

vulnerability	VCID-usvm-2xea-ffd6

vulnerability	VCID-uyu5-b3md-37cm

vulnerability	VCID-x1xm-1qpa-u7c1

vulnerability	VCID-x688-21pv-7yf8

vulnerability	VCID-ywwf-hc75-nbdm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
purl	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.101-1%3Fdistro=trixie

aliases CVE-2024-3841

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-p3ts-q4qw-1qch

url VCID-p3wp-rb44-7ygm

vulnerability_id VCID-p3wp-rb44-7ygm

summary Insufficient policy enforcement in WebUI in Google Chrome prior to 124.0.6367.60 allowed a remote attacker to bypass content security policy via a crafted HTML page. (Chromium security severity: Low)

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-3847

reference_id

reference_type

scores

value	0.00129
scoring_system	epss
scoring_elements	0.32407
published_at	2026-04-02T12:55:00Z

value	0.00129
scoring_system	epss
scoring_elements	0.32266
published_at	2026-04-21T12:55:00Z

value	0.00129
scoring_system	epss
scoring_elements	0.32295
published_at	2026-04-18T12:55:00Z

value	0.00129
scoring_system	epss
scoring_elements	0.32283
published_at	2026-04-13T12:55:00Z

value	0.00129
scoring_system	epss
scoring_elements	0.32311
published_at	2026-04-12T12:55:00Z

value	0.00129
scoring_system	epss
scoring_elements	0.32349
published_at	2026-04-11T12:55:00Z

value	0.00129
scoring_system	epss
scoring_elements	0.32348
published_at	2026-04-09T12:55:00Z

value	0.00129
scoring_system	epss
scoring_elements	0.32319
published_at	2026-04-16T12:55:00Z

value	0.00129
scoring_system	epss
scoring_elements	0.3227
published_at	2026-04-07T12:55:00Z

value	0.00129
scoring_system	epss
scoring_elements	0.32444
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-3847

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3847
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3847

reference_url

https://issues.chromium.org/issues/328690293

reference_id

328690293

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-05-07T17:48:33Z/

url

https://issues.chromium.org/issues/328690293

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T/

reference_id

CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-05-07T17:48:33Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7/

reference_id

IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-05-07T17:48:33Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ/

reference_id

M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-05-07T17:48:33Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6/

reference_id

PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-05-07T17:48:33Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6/

reference_url

https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.html

reference_id

stable-channel-update-for-desktop_16.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-05-07T17:48:33Z/

url

https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN/

reference_id

UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-05-07T17:48:33Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO/

reference_id

WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-05-07T17:48:33Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO/

fixed_packages

url	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
purl	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

purl pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gbt-xkej-k7aw

vulnerability	VCID-2s6k-knqz-s7bv

vulnerability	VCID-32xu-tbuh-nfds

vulnerability	VCID-5znj-k78s-suca

vulnerability	VCID-6dub-gz8z-m3fk

vulnerability	VCID-7gex-zf7d-5ka4

vulnerability	VCID-88yy-dyf6-cue7

vulnerability	VCID-8uaq-e8kp-87fs

vulnerability	VCID-9p5u-1x3q-63dh

vulnerability	VCID-9s6e-p69b-suep

vulnerability	VCID-9sbp-bp4k-23cn

vulnerability	VCID-ehkc-zgaa-23fy

vulnerability	VCID-fene-srh1-b3gp

vulnerability	VCID-jr1y-txur-ebgr

vulnerability	VCID-n5d6-9gwm-vkc7

vulnerability	VCID-pg29-vrqh-pka8

vulnerability	VCID-pgw2-3qy2-5ban

vulnerability	VCID-pmwr-4j1v-s7gu

vulnerability	VCID-ptwz-uax5-mqbq

vulnerability	VCID-pvbx-j8j1-dkb3

vulnerability	VCID-q45n-pmfj-f7ae

vulnerability	VCID-r2b4-pdwz-ybae

vulnerability	VCID-v2gf-rqxb-57ae

vulnerability	VCID-vscd-6s2t-bucr

vulnerability	VCID-xfz2-cwzt-tqhz

vulnerability	VCID-y17q-5gas-jke9

vulnerability	VCID-z8nt-w84w-tkew

vulnerability	VCID-zcq4-z2c5-2ffr

vulnerability	VCID-zrnp-ujpt-tbee

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.153-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
purl	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.177-1%3Fdistro=trixie

url pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

purl pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1sea-z3vg-wfc4

vulnerability	VCID-212t-kjka-pbe4

vulnerability	VCID-3c8j-6wcw-83ax

vulnerability	VCID-47az-428z-bkar

vulnerability	VCID-7x3z-8d6t-vfen

vulnerability	VCID-8j9g-6zs1-13am

vulnerability	VCID-97y1-b8j2-xfb5

vulnerability	VCID-9amk-6z38-qbb1

vulnerability	VCID-9h91-43nj-7qgy

vulnerability	VCID-dzf3-492x-budu

vulnerability	VCID-erxp-a8pr-zyff

vulnerability	VCID-fk6m-8k4f-hyhz

vulnerability	VCID-hyew-s4ya-43bv

vulnerability	VCID-jd9x-rsee-ekfk

vulnerability	VCID-jku3-pwsy-bufq

vulnerability	VCID-jqs4-fgj9-63g7

vulnerability	VCID-k82r-r6dh-qfem

vulnerability	VCID-mjv9-578z-3kej

vulnerability	VCID-mp8f-94vu-jyf9

vulnerability	VCID-my86-8n81-y3hd

vulnerability	VCID-ndkj-5v64-cfa9

vulnerability	VCID-p4dd-y4mm-fqam

vulnerability	VCID-q17c-ud54-5ydd

vulnerability	VCID-qrwz-k5dg-27b2

vulnerability	VCID-thk2-w3k4-jfep

vulnerability	VCID-uded-9de1-xkdj

vulnerability	VCID-usvm-2xea-ffd6

vulnerability	VCID-uyu5-b3md-37cm

vulnerability	VCID-x1xm-1qpa-u7c1

vulnerability	VCID-x688-21pv-7yf8

vulnerability	VCID-ywwf-hc75-nbdm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
purl	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.101-1%3Fdistro=trixie

aliases CVE-2024-3847

risk_score 4.4

exploitability 0.5

weighted_severity 8.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-p3wp-rb44-7ygm

url VCID-snc8-e46j-9fa2

vulnerability_id VCID-snc8-e46j-9fa2

summary Inappropriate implementation in Autofill in Google Chrome prior to 124.0.6367.60 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-7020

reference_id

reference_type

scores

value	0.00121
scoring_system	epss
scoring_elements	0.31018
published_at	2026-04-21T12:55:00Z

value	0.00121
scoring_system	epss
scoring_elements	0.3107
published_at	2026-04-16T12:55:00Z

value	0.00121
scoring_system	epss
scoring_elements	0.31051
published_at	2026-04-18T12:55:00Z

value	0.00121
scoring_system	epss
scoring_elements	0.31167
published_at	2026-04-02T12:55:00Z

value	0.00121
scoring_system	epss
scoring_elements	0.31214
published_at	2026-04-04T12:55:00Z

value	0.00121
scoring_system	epss
scoring_elements	0.31034
published_at	2026-04-07T12:55:00Z

value	0.00121
scoring_system	epss
scoring_elements	0.3109
published_at	2026-04-08T12:55:00Z

value	0.00121
scoring_system	epss
scoring_elements	0.3112
published_at	2026-04-09T12:55:00Z

value	0.00121
scoring_system	epss
scoring_elements	0.31127
published_at	2026-04-11T12:55:00Z

value	0.00121
scoring_system	epss
scoring_elements	0.31083
published_at	2026-04-12T12:55:00Z

value	0.00121
scoring_system	epss
scoring_elements	0.31038
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-7020

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7020
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7020

reference_url

https://issues.chromium.org/issues/40076065

reference_id

40076065

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-24T18:31:06Z/

url

https://issues.chromium.org/issues/40076065

fixed_packages

url	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
purl	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

purl pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gbt-xkej-k7aw

vulnerability	VCID-2s6k-knqz-s7bv

vulnerability	VCID-32xu-tbuh-nfds

vulnerability	VCID-5znj-k78s-suca

vulnerability	VCID-6dub-gz8z-m3fk

vulnerability	VCID-7gex-zf7d-5ka4

vulnerability	VCID-88yy-dyf6-cue7

vulnerability	VCID-8uaq-e8kp-87fs

vulnerability	VCID-9p5u-1x3q-63dh

vulnerability	VCID-9s6e-p69b-suep

vulnerability	VCID-9sbp-bp4k-23cn

vulnerability	VCID-ehkc-zgaa-23fy

vulnerability	VCID-fene-srh1-b3gp

vulnerability	VCID-jr1y-txur-ebgr

vulnerability	VCID-n5d6-9gwm-vkc7

vulnerability	VCID-pg29-vrqh-pka8

vulnerability	VCID-pgw2-3qy2-5ban

vulnerability	VCID-pmwr-4j1v-s7gu

vulnerability	VCID-ptwz-uax5-mqbq

vulnerability	VCID-pvbx-j8j1-dkb3

vulnerability	VCID-q45n-pmfj-f7ae

vulnerability	VCID-r2b4-pdwz-ybae

vulnerability	VCID-v2gf-rqxb-57ae

vulnerability	VCID-vscd-6s2t-bucr

vulnerability	VCID-xfz2-cwzt-tqhz

vulnerability	VCID-y17q-5gas-jke9

vulnerability	VCID-z8nt-w84w-tkew

vulnerability	VCID-zcq4-z2c5-2ffr

vulnerability	VCID-zrnp-ujpt-tbee

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.153-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
purl	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.177-1%3Fdistro=trixie

url pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

purl pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1sea-z3vg-wfc4

vulnerability	VCID-212t-kjka-pbe4

vulnerability	VCID-3c8j-6wcw-83ax

vulnerability	VCID-47az-428z-bkar

vulnerability	VCID-7x3z-8d6t-vfen

vulnerability	VCID-8j9g-6zs1-13am

vulnerability	VCID-97y1-b8j2-xfb5

vulnerability	VCID-9amk-6z38-qbb1

vulnerability	VCID-9h91-43nj-7qgy

vulnerability	VCID-dzf3-492x-budu

vulnerability	VCID-erxp-a8pr-zyff

vulnerability	VCID-fk6m-8k4f-hyhz

vulnerability	VCID-hyew-s4ya-43bv

vulnerability	VCID-jd9x-rsee-ekfk

vulnerability	VCID-jku3-pwsy-bufq

vulnerability	VCID-jqs4-fgj9-63g7

vulnerability	VCID-k82r-r6dh-qfem

vulnerability	VCID-mjv9-578z-3kej

vulnerability	VCID-mp8f-94vu-jyf9

vulnerability	VCID-my86-8n81-y3hd

vulnerability	VCID-ndkj-5v64-cfa9

vulnerability	VCID-p4dd-y4mm-fqam

vulnerability	VCID-q17c-ud54-5ydd

vulnerability	VCID-qrwz-k5dg-27b2

vulnerability	VCID-thk2-w3k4-jfep

vulnerability	VCID-uded-9de1-xkdj

vulnerability	VCID-usvm-2xea-ffd6

vulnerability	VCID-uyu5-b3md-37cm

vulnerability	VCID-x1xm-1qpa-u7c1

vulnerability	VCID-x688-21pv-7yf8

vulnerability	VCID-ywwf-hc75-nbdm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
purl	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.101-1%3Fdistro=trixie

aliases CVE-2024-7020

risk_score 1.1

exploitability 0.5

weighted_severity 2.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-snc8-e46j-9fa2

url VCID-t5uy-rm9d-9bcx

vulnerability_id VCID-t5uy-rm9d-9bcx

summary Insufficient data validation in Downloads in Google Chrome prior to 124.0.6367.60 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-3843

reference_id

reference_type

scores

value	0.00534
scoring_system	epss
scoring_elements	0.67354
published_at	2026-04-02T12:55:00Z

value	0.00534
scoring_system	epss
scoring_elements	0.67443
published_at	2026-04-18T12:55:00Z

value	0.00534
scoring_system	epss
scoring_elements	0.67431
published_at	2026-04-16T12:55:00Z

value	0.00534
scoring_system	epss
scoring_elements	0.67395
published_at	2026-04-13T12:55:00Z

value	0.00534
scoring_system	epss
scoring_elements	0.67428
published_at	2026-04-12T12:55:00Z

value	0.00534
scoring_system	epss
scoring_elements	0.67441
published_at	2026-04-11T12:55:00Z

value	0.00534
scoring_system	epss
scoring_elements	0.6742
published_at	2026-04-21T12:55:00Z

value	0.00534
scoring_system	epss
scoring_elements	0.67407
published_at	2026-04-08T12:55:00Z

value	0.00534
scoring_system	epss
scoring_elements	0.67355
published_at	2026-04-07T12:55:00Z

value	0.00534
scoring_system	epss
scoring_elements	0.67377
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-3843

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3843
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3843

reference_url

https://issues.chromium.org/issues/41486690

reference_id

41486690

reference_type

scores

value	4.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T18:27:07Z/

url

https://issues.chromium.org/issues/41486690

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T/

reference_id

CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T

reference_type

scores

value	4.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T18:27:07Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7/

reference_id

IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7

reference_type

scores

value	4.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T18:27:07Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ/

reference_id

M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ

reference_type

scores

value	4.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T18:27:07Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6/

reference_id

PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6

reference_type

scores

value	4.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T18:27:07Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6/

reference_url

https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.html

reference_id

stable-channel-update-for-desktop_16.html

reference_type

scores

value	4.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T18:27:07Z/

url

https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN/

reference_id

UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN

reference_type

scores

value	4.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T18:27:07Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO/

reference_id

WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO

reference_type

scores

value	4.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T18:27:07Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO/

fixed_packages

url	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
purl	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

purl pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gbt-xkej-k7aw

vulnerability	VCID-2s6k-knqz-s7bv

vulnerability	VCID-32xu-tbuh-nfds

vulnerability	VCID-5znj-k78s-suca

vulnerability	VCID-6dub-gz8z-m3fk

vulnerability	VCID-7gex-zf7d-5ka4

vulnerability	VCID-88yy-dyf6-cue7

vulnerability	VCID-8uaq-e8kp-87fs

vulnerability	VCID-9p5u-1x3q-63dh

vulnerability	VCID-9s6e-p69b-suep

vulnerability	VCID-9sbp-bp4k-23cn

vulnerability	VCID-ehkc-zgaa-23fy

vulnerability	VCID-fene-srh1-b3gp

vulnerability	VCID-jr1y-txur-ebgr

vulnerability	VCID-n5d6-9gwm-vkc7

vulnerability	VCID-pg29-vrqh-pka8

vulnerability	VCID-pgw2-3qy2-5ban

vulnerability	VCID-pmwr-4j1v-s7gu

vulnerability	VCID-ptwz-uax5-mqbq

vulnerability	VCID-pvbx-j8j1-dkb3

vulnerability	VCID-q45n-pmfj-f7ae

vulnerability	VCID-r2b4-pdwz-ybae

vulnerability	VCID-v2gf-rqxb-57ae

vulnerability	VCID-vscd-6s2t-bucr

vulnerability	VCID-xfz2-cwzt-tqhz

vulnerability	VCID-y17q-5gas-jke9

vulnerability	VCID-z8nt-w84w-tkew

vulnerability	VCID-zcq4-z2c5-2ffr

vulnerability	VCID-zrnp-ujpt-tbee

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.153-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
purl	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.177-1%3Fdistro=trixie

url pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

purl pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1sea-z3vg-wfc4

vulnerability	VCID-212t-kjka-pbe4

vulnerability	VCID-3c8j-6wcw-83ax

vulnerability	VCID-47az-428z-bkar

vulnerability	VCID-7x3z-8d6t-vfen

vulnerability	VCID-8j9g-6zs1-13am

vulnerability	VCID-97y1-b8j2-xfb5

vulnerability	VCID-9amk-6z38-qbb1

vulnerability	VCID-9h91-43nj-7qgy

vulnerability	VCID-dzf3-492x-budu

vulnerability	VCID-erxp-a8pr-zyff

vulnerability	VCID-fk6m-8k4f-hyhz

vulnerability	VCID-hyew-s4ya-43bv

vulnerability	VCID-jd9x-rsee-ekfk

vulnerability	VCID-jku3-pwsy-bufq

vulnerability	VCID-jqs4-fgj9-63g7

vulnerability	VCID-k82r-r6dh-qfem

vulnerability	VCID-mjv9-578z-3kej

vulnerability	VCID-mp8f-94vu-jyf9

vulnerability	VCID-my86-8n81-y3hd

vulnerability	VCID-ndkj-5v64-cfa9

vulnerability	VCID-p4dd-y4mm-fqam

vulnerability	VCID-q17c-ud54-5ydd

vulnerability	VCID-qrwz-k5dg-27b2

vulnerability	VCID-thk2-w3k4-jfep

vulnerability	VCID-uded-9de1-xkdj

vulnerability	VCID-usvm-2xea-ffd6

vulnerability	VCID-uyu5-b3md-37cm

vulnerability	VCID-x1xm-1qpa-u7c1

vulnerability	VCID-x688-21pv-7yf8

vulnerability	VCID-ywwf-hc75-nbdm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
purl	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.101-1%3Fdistro=trixie

aliases CVE-2024-3843

risk_score 2.0

exploitability 0.5

weighted_severity 4.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-t5uy-rm9d-9bcx

url VCID-u3qp-1wrx-6fg1

vulnerability_id VCID-u3qp-1wrx-6fg1

summary Use after free in V8 in Google Chrome prior to 124.0.6367.60 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-3914

reference_id

reference_type

scores

value	0.00258
scoring_system	epss
scoring_elements	0.49149
published_at	2026-04-02T12:55:00Z

value	0.00258
scoring_system	epss
scoring_elements	0.49191
published_at	2026-04-21T12:55:00Z

value	0.00258
scoring_system	epss
scoring_elements	0.49221
published_at	2026-04-18T12:55:00Z

value	0.00258
scoring_system	epss
scoring_elements	0.49223
published_at	2026-04-16T12:55:00Z

value	0.00258
scoring_system	epss
scoring_elements	0.49177
published_at	2026-04-13T12:55:00Z

value	0.00258
scoring_system	epss
scoring_elements	0.49172
published_at	2026-04-12T12:55:00Z

value	0.00258
scoring_system	epss
scoring_elements	0.49198
published_at	2026-04-11T12:55:00Z

value	0.00258
scoring_system	epss
scoring_elements	0.49181
published_at	2026-04-09T12:55:00Z

value	0.00258
scoring_system	epss
scoring_elements	0.49184
published_at	2026-04-08T12:55:00Z

value	0.00258
scoring_system	epss
scoring_elements	0.4913
published_at	2026-04-07T12:55:00Z

value	0.00258
scoring_system	epss
scoring_elements	0.49178
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-3914

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3914
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3914

reference_url

https://issues.chromium.org/issues/330759272

reference_id

330759272

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-19T15:38:34Z/

url

https://issues.chromium.org/issues/330759272

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T/

reference_id

CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-19T15:38:34Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7/

reference_id

IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-19T15:38:34Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ/

reference_id

M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-19T15:38:34Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6/

reference_id

PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-19T15:38:34Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6/

reference_url

https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.html

reference_id

stable-channel-update-for-desktop_16.html

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-19T15:38:34Z/

url

https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN/

reference_id

UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-19T15:38:34Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO/

reference_id

WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-19T15:38:34Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO/

fixed_packages

url	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
purl	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

purl pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gbt-xkej-k7aw

vulnerability	VCID-2s6k-knqz-s7bv

vulnerability	VCID-32xu-tbuh-nfds

vulnerability	VCID-5znj-k78s-suca

vulnerability	VCID-6dub-gz8z-m3fk

vulnerability	VCID-7gex-zf7d-5ka4

vulnerability	VCID-88yy-dyf6-cue7

vulnerability	VCID-8uaq-e8kp-87fs

vulnerability	VCID-9p5u-1x3q-63dh

vulnerability	VCID-9s6e-p69b-suep

vulnerability	VCID-9sbp-bp4k-23cn

vulnerability	VCID-ehkc-zgaa-23fy

vulnerability	VCID-fene-srh1-b3gp

vulnerability	VCID-jr1y-txur-ebgr

vulnerability	VCID-n5d6-9gwm-vkc7

vulnerability	VCID-pg29-vrqh-pka8

vulnerability	VCID-pgw2-3qy2-5ban

vulnerability	VCID-pmwr-4j1v-s7gu

vulnerability	VCID-ptwz-uax5-mqbq

vulnerability	VCID-pvbx-j8j1-dkb3

vulnerability	VCID-q45n-pmfj-f7ae

vulnerability	VCID-r2b4-pdwz-ybae

vulnerability	VCID-v2gf-rqxb-57ae

vulnerability	VCID-vscd-6s2t-bucr

vulnerability	VCID-xfz2-cwzt-tqhz

vulnerability	VCID-y17q-5gas-jke9

vulnerability	VCID-z8nt-w84w-tkew

vulnerability	VCID-zcq4-z2c5-2ffr

vulnerability	VCID-zrnp-ujpt-tbee

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.153-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
purl	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.177-1%3Fdistro=trixie

url pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

purl pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1sea-z3vg-wfc4

vulnerability	VCID-212t-kjka-pbe4

vulnerability	VCID-3c8j-6wcw-83ax

vulnerability	VCID-47az-428z-bkar

vulnerability	VCID-7x3z-8d6t-vfen

vulnerability	VCID-8j9g-6zs1-13am

vulnerability	VCID-97y1-b8j2-xfb5

vulnerability	VCID-9amk-6z38-qbb1

vulnerability	VCID-9h91-43nj-7qgy

vulnerability	VCID-dzf3-492x-budu

vulnerability	VCID-erxp-a8pr-zyff

vulnerability	VCID-fk6m-8k4f-hyhz

vulnerability	VCID-hyew-s4ya-43bv

vulnerability	VCID-jd9x-rsee-ekfk

vulnerability	VCID-jku3-pwsy-bufq

vulnerability	VCID-jqs4-fgj9-63g7

vulnerability	VCID-k82r-r6dh-qfem

vulnerability	VCID-mjv9-578z-3kej

vulnerability	VCID-mp8f-94vu-jyf9

vulnerability	VCID-my86-8n81-y3hd

vulnerability	VCID-ndkj-5v64-cfa9

vulnerability	VCID-p4dd-y4mm-fqam

vulnerability	VCID-q17c-ud54-5ydd

vulnerability	VCID-qrwz-k5dg-27b2

vulnerability	VCID-thk2-w3k4-jfep

vulnerability	VCID-uded-9de1-xkdj

vulnerability	VCID-usvm-2xea-ffd6

vulnerability	VCID-uyu5-b3md-37cm

vulnerability	VCID-x1xm-1qpa-u7c1

vulnerability	VCID-x688-21pv-7yf8

vulnerability	VCID-ywwf-hc75-nbdm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
purl	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.101-1%3Fdistro=trixie

aliases CVE-2024-3914

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-u3qp-1wrx-6fg1

url VCID-xtcv-nv3g-nkfr

vulnerability_id VCID-xtcv-nv3g-nkfr

summary Multiple vulnerabilities have been discovered in Chromium and its derivatives, the worst of which can lead to remote code execution.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-3833

reference_id

reference_type

scores

value	0.04149
scoring_system	epss
scoring_elements	0.88621
published_at	2026-04-02T12:55:00Z

value	0.04149
scoring_system	epss
scoring_elements	0.88675
published_at	2026-04-21T12:55:00Z

value	0.04149
scoring_system	epss
scoring_elements	0.88676
published_at	2026-04-18T12:55:00Z

value	0.04149
scoring_system	epss
scoring_elements	0.8868
published_at	2026-04-16T12:55:00Z

value	0.04149
scoring_system	epss
scoring_elements	0.88666
published_at	2026-04-13T12:55:00Z

value	0.04149
scoring_system	epss
scoring_elements	0.88673
published_at	2026-04-11T12:55:00Z

value	0.04149
scoring_system	epss
scoring_elements	0.88661
published_at	2026-04-09T12:55:00Z

value	0.04149
scoring_system	epss
scoring_elements	0.88656
published_at	2026-04-08T12:55:00Z

value	0.04149
scoring_system	epss
scoring_elements	0.88638
published_at	2026-04-07T12:55:00Z

value	0.04149
scoring_system	epss
scoring_elements	0.88637
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-3833

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3833
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3833

reference_url

https://issues.chromium.org/issues/331383939

reference_id

331383939

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-06-28T03:55:29Z/

url

https://issues.chromium.org/issues/331383939

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T/

reference_id

CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-06-28T03:55:29Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWIVXXSVO5VB3NAZVFJ7CWVBN6W2735T/

reference_url	https://security.gentoo.org/glsa/202412-05
reference_id	GLSA-202412-05
reference_type
scores
url	https://security.gentoo.org/glsa/202412-05

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7/

reference_id

IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-06-28T03:55:29Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IDLUD644WEWGOFKMZWC2K7Z4CQOKQYR7/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ/

reference_id

M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-06-28T03:55:29Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M4PCXKCOVBUUU6GOSN46DCPI4HMER3PJ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6/

reference_id

PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-06-28T03:55:29Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCWPUBGTBNT4EW32YNZMRIPB3Y4R6XL6/

reference_url

https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.html

reference_id

stable-channel-update-for-desktop_16.html

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-06-28T03:55:29Z/

url

https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_16.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN/

reference_id

UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-06-28T03:55:29Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOC3HLIZCGMIJLJ6LME5UWUUIFLXEGRN/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO/

reference_id

WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-06-28T03:55:29Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WEP5NJUWMDRLDQUKU4LFDUHF5PCYAPIO/

fixed_packages

url	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
purl	pkg:deb/debian/chromium@124.0.6367.60-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
purl	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

purl pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gbt-xkej-k7aw

vulnerability	VCID-2s6k-knqz-s7bv

vulnerability	VCID-32xu-tbuh-nfds

vulnerability	VCID-5znj-k78s-suca

vulnerability	VCID-6dub-gz8z-m3fk

vulnerability	VCID-7gex-zf7d-5ka4

vulnerability	VCID-88yy-dyf6-cue7

vulnerability	VCID-8uaq-e8kp-87fs

vulnerability	VCID-9p5u-1x3q-63dh

vulnerability	VCID-9s6e-p69b-suep

vulnerability	VCID-9sbp-bp4k-23cn

vulnerability	VCID-ehkc-zgaa-23fy

vulnerability	VCID-fene-srh1-b3gp

vulnerability	VCID-jr1y-txur-ebgr

vulnerability	VCID-n5d6-9gwm-vkc7

vulnerability	VCID-pg29-vrqh-pka8

vulnerability	VCID-pgw2-3qy2-5ban

vulnerability	VCID-pmwr-4j1v-s7gu

vulnerability	VCID-ptwz-uax5-mqbq

vulnerability	VCID-pvbx-j8j1-dkb3

vulnerability	VCID-q45n-pmfj-f7ae

vulnerability	VCID-r2b4-pdwz-ybae

vulnerability	VCID-v2gf-rqxb-57ae

vulnerability	VCID-vscd-6s2t-bucr

vulnerability	VCID-xfz2-cwzt-tqhz

vulnerability	VCID-y17q-5gas-jke9

vulnerability	VCID-z8nt-w84w-tkew

vulnerability	VCID-zcq4-z2c5-2ffr

vulnerability	VCID-zrnp-ujpt-tbee

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.153-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
purl	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.177-1%3Fdistro=trixie

url pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

purl pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1sea-z3vg-wfc4

vulnerability	VCID-212t-kjka-pbe4

vulnerability	VCID-3c8j-6wcw-83ax

vulnerability	VCID-47az-428z-bkar

vulnerability	VCID-7x3z-8d6t-vfen

vulnerability	VCID-8j9g-6zs1-13am

vulnerability	VCID-97y1-b8j2-xfb5

vulnerability	VCID-9amk-6z38-qbb1

vulnerability	VCID-9h91-43nj-7qgy

vulnerability	VCID-dzf3-492x-budu

vulnerability	VCID-erxp-a8pr-zyff

vulnerability	VCID-fk6m-8k4f-hyhz

vulnerability	VCID-hyew-s4ya-43bv

vulnerability	VCID-jd9x-rsee-ekfk

vulnerability	VCID-jku3-pwsy-bufq

vulnerability	VCID-jqs4-fgj9-63g7

vulnerability	VCID-k82r-r6dh-qfem

vulnerability	VCID-mjv9-578z-3kej

vulnerability	VCID-mp8f-94vu-jyf9

vulnerability	VCID-my86-8n81-y3hd

vulnerability	VCID-ndkj-5v64-cfa9

vulnerability	VCID-p4dd-y4mm-fqam

vulnerability	VCID-q17c-ud54-5ydd

vulnerability	VCID-qrwz-k5dg-27b2

vulnerability	VCID-thk2-w3k4-jfep

vulnerability	VCID-uded-9de1-xkdj

vulnerability	VCID-usvm-2xea-ffd6

vulnerability	VCID-uyu5-b3md-37cm

vulnerability	VCID-x1xm-1qpa-u7c1

vulnerability	VCID-x688-21pv-7yf8

vulnerability	VCID-ywwf-hc75-nbdm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
purl	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.101-1%3Fdistro=trixie

aliases CVE-2024-3833

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xtcv-nv3g-nkfr

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@124.0.6367.60-1%3Fdistro=trixie

Package Instance