| VID |
28955 |
| Severity |
40 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The version of Google Chrome installed on the remote Windows host is prior to 126.0.6478.126. It is, therefore, affected by multiple vulnerabilities as referenced in the 2024_06_stable-channel-update-for-desktop_24 advisory.
- Use after free in Dawn. (CVE-2024-6290, CVE-2024-6292, CVE-2024-6293)
- Use after free in Swiftshader. (CVE-2024-6291)
* References:
https://chromereleases.googleblog.com/2024/06/stable-channel-update-for-desktop_24.html
https://crbug.com/342428008
https://crbug.com/40942995
https://crbug.com/342545100
https://crbug.com/345993680
* Platforms Affected:
Google Chrome versions prior to 126.0.6478.126
Microsoft Windows Any version |
| Recommendation |
Upgrade to the latest version Google Chrome (126.0.6478.126 or later), available from the Google Web site at http://www.google.com/chrome/ |
| Related URL |
CVE-2024-6290,CVE-2024-6291,CVE-2024-6292,CVE-2024-6293 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
