| VID |
28960 |
| Severity |
40 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The version of Google Chrome installed on the remote Windows host is prior to 130.0.6723.92. It is, therefore, affected by multiple vulnerabilities as referenced in the 2024_10_stable-channel-update-for-desktop_29 advisory.
- Out of bounds write in Dawn. (CVE-2024-10487)
- Use after free in WebRTC. (CVE-2024-10488)
* References:
https://chromereleases.googleblog.com/2024/10/stable-channel-update-for-desktop_29.html
https://crbug.com/375123371
https://crbug.com/374310077
* Platforms Affected:
Google Chrome versions prior to 130.0.6723.92
Microsoft Windows Any version |
| Recommendation |
Upgrade to the latest version Google Chrome (130.0.6723.92 or later), available from the Google Web site at http://www.google.com/chrome/ |
| Related URL |
CVE-2024-10487,CVE-2024-10488 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
