CVE-2024-11116

Published Nov 12, 2024

Last updated 4 days ago

CVSS medium 4.3

Overview

Description
Inappropriate implementation in Blink in Google Chrome prior to 131.0.6778.69 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)
Source
chrome-cve-admin@google.com
NVD status
Awaiting Analysis

Risk scores

CVSS 3.1

Type
Secondary
Base score
4.3
Impact score
1.4
Exploitability score
2.8
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Severity
MEDIUM

Weaknesses

134c704f-9b21-4f2e-91b3-4a467353bcc0
CWE-79

Social media

Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.

Hype score

1

  1. 🚨 CVE-2024-11116 (Published: 2024-11-12) - A medium-severity vulnerability in Google Nan affects multiple versions. Users are urged to update to the latest version to mitigate risks. For more details, check the issue tracker: https://t.co/2A8roYTFXu #CyberSecurity… https://t.co/

    @transilienceai

    15 Nov 2024

    23 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. 🚨 CVE-2024-11116 (Published: 2024-11-12) - Medium severity in Google products. Affected versions include specific releases of Chrome. Users are urged to update to the latest version to mitigate potential exploits. Stay safe and secure! More info: https://t.co/2A8roYTFXu… https:/

    @transilienceai

    15 Nov 2024

    14 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. 🚨 CVE-2024-11116 (Published: 2024-11-12) - A medium severity vulnerability affects Google Nan. Ensure your systems are updated to the latest version to mitigate risks. For detailed remediation steps, check the issue tracker: https://t.co/2A8roYTFXu #CyberSecurity… https://t.co/h

    @transilienceai

    15 Nov 2024

    21 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. 🚨 CVE-2024-11116 (Published: 2024-11-12) - Medium severity vulnerability in Google Chrome. Affects multiple versions. Users are urged to update to the latest version to mitigate risks. For more details, check the official update: https://t.co/NG03sUPtdD #CyberSecurity… https://t

    @transilienceai

    15 Nov 2024

    26 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  5. CVE-2024-11116 UI Spoofing Vulnerability in Google Chrome Prior to 131.0.6778.69 An issue in Blink in Google Chrome before version 131.0.6778.69 made it possible for a remote attacker to trick a user into perform... https://t.co/HtbllgQvGP

    @VulmonFeeds

    13 Nov 2024

    33 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References