VYPR
Medium severity4.3NVD Advisory· Published Oct 15, 2024· Updated Jun 17, 2026

CVE-2024-9958

CVE-2024-9958

Description

Inappropriate implementation in PictureInPicture in Google Chrome prior to 130.0.6723.58 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

Affected products

9

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.