THREATINT

We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Zendesk (Helpdesk and Chat)

Ok

PUBLISHED

CVE-2024-5840

Assigner:Chrome (ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28)
Reserved:2024-06-11
Published:2024-06-11
Updated:2024-06-11

Description

Policy bypass in CORS in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to bypass discretionary access control via a crafted HTML page. (Chromium security severity: Medium)

Problem types

Policy bypass

Product status

126.0.6478.54 before 126.0.6478.54
affected

References

https://chromereleases.googleblog.com/2024/06/stable-channel-update-for-desktop.html

https://issues.chromium.org/issues/41492103

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7VXA32LXMNK3DSK3JBRLTBPFUH7LTODU/

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MPU7AB53QQVNTBPGRMJRY5SXJNYWW3FX/

cve.org CVE-2024-5840

nvd.nist.gov CVE-2024-5840

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-5840