VYPR
High severity7.8NVD Advisory· Published Oct 15, 2024· Updated Jun 17, 2026

CVE-2024-9956

CVE-2024-9956

Description

Inappropriate implementation in WebAuthentication in Google Chrome on Android prior to 130.0.6723.58 allowed a local attacker to perform privilege escalation via a crafted HTML page. (Chromium security severity: Medium)

Affected products

10

Patches

Vulnerability mechanics

References

5

News mentions

1