ChromeOS Multiple Vulnerabilities
Last Update Date:
7 Oct 2024
Release Date:
3 Oct 2024
2386
Views
RISK: Medium Risk
TYPE: Operating Systems - Others OS
Multiple vulnerabilities were identified in ChromeOS. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, spoofing, remote code execution, security restriction bypass, sensitive information disclosure and cross-site scripting on the targeted system.
[Updated on 2024-10-07]
Updated Description, Impact, System / Technologies affected, Solutions, Vulnerability Identifier and Related Links.
Impact
- Remote Code Execution
- Denial of Service
- Spoofing
- Cross-Site Scripting
- Information Disclosure
- Security Restriction Bypass
System / Technologies affected
- ChromeOS Stable version prior to 16002.44.0(Browser version prior to 129.0.6668.80)
- ChromeOS LTS version prior to 126.0.6478.254 (Platform Version prior to 15886.79.0)
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor. For detail, please refer to the link below:
- https://chromereleases.googleblog.com/2024/10/stable-channel-update-for-chromeos.html
- https://chromereleases.googleblog.com/2024/10/long-term-support-lts-channel-for.html
Vulnerability Identifier
- CVE-2024-8904
- CVE-2024-8905
- CVE-2024-8908
- CVE-2024-9121
- CVE-2024-9122
- CVE-2024-9123
- CVE-2024-47076
- CVE-2024-47175
- CVE-2024-47176
- CVE-2024-47177
Source
Related Link
Related Tags
Share with