Security Advisory

CVE-2024-9958

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-10-15 20:14:55

Last updated 2025-03-25 16:30:46

Assigner Chrome

State PUBLISHED

Description

Inappropriate implementation in PictureInPicture in Google Chrome prior to 130.0.6723.58 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

← Browse all CVEs View on cve.org ↗