216.73.217.176

CVE-2024-9126

· Published 14/11/2025 03:15 · Modified 17/11/2025 12:24

Labels: CVE-2024-9126 2025-11-14CVE-2024-9126CWE-416[email protected]

Essential information

Published
14/11/2025 03:15
Modified
17/11/2025 12:24
Author
Creator
CVSS
7.5 HIGH (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

CVSS metrics

Description

Use after free in Internals in Google Chrome on iOS prior to 127.0.6533.88 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a series of curated UI gestures. (Chromium security severity: Medium)

NVD status

Status
Analyzed — CVE has had analysis completed and all data associations made.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
google / chrome cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
apple / iphone os cpe:2.3:o:apple:iphone_os:-:*:*:*:*:*:*:*

References