{"vulnerability": "CVE-2024-3157", "sightings": [{"uuid": "bac77e63-751e-4e54-9219-0b966f48e2ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2024-31573", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=1833", "content": "", "creation_timestamp": "2026-04-21T21:00:00.000000Z"}, {"uuid": "505ce7eb-e107-49c4-a538-66447de5a5f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-3157", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/9111", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-3157\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Out of bounds memory access in Compositing in Google Chrome prior to 123.0.6312.122 allowed a remote attacker who had compromised the GPU process to potentially perform a sandbox escape via specific UI gestures. (Chromium security severity: High)\n\ud83d\udccf Published: 2024-04-10T18:41:38.145Z\n\ud83d\udccf Modified: 2025-03-27T15:21:03.544Z\n\ud83d\udd17 References:\n1. https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_10.html\n2. https://issues.chromium.org/issues/331237485\n3. https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NDHNEFD76ORM7WBWAEZT6HSYDMZVIED4/\n4. https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5EW66LXDACTB5FCHLUPZOGD2KA2J62Q2/\n5. https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EVEJEW7UCSUSK2J2FYQRZZPI74P2D3JP/", "creation_timestamp": "2025-03-27T15:26:40.000000Z"}, {"uuid": "3852bb99-89a0-4814-a320-2b96827dda3e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-31570", "type": "seen", "source": "https://t.me/cvedetector/6065", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-31570 - FreeImage XPM Stack Buffer Overflow\", \n  \"Content\": \"CVE ID : CVE-2024-31570 \nPublished : Sept. 19, 2024, 5:15 p.m. | 44\u00a0minutes ago \nDescription : libfreeimage in FreeImage 3.4.0 through 3.18.0 has a stack-based buffer overflow in the PluginXPM.cpp Load function via an XPM file. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"19 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-19T20:20:25.000000Z"}, {"uuid": "eb16b74c-e544-46a0-b58e-20ccc7b0c169", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-3157", "type": "seen", "source": "https://t.me/arpsyndicate/4846", "content": "#ExploitObserverAlert\n\nCVE-2024-3157\n\nDESCRIPTION: Exploit Observer has 22 entries in 6 file formats related to CVE-2024-3157. Out of bounds memory access in Compositing in Google Chrome prior to 123.0.6312.122 allowed a remote attacker who had compromised the GPU process to potentially perform a sandbox escape via specific UI gestures. (Chromium security severity: High)\n\nFIRST-EPSS: 0.000450000\nARPS-PRIORITY: 0.7468936", "creation_timestamp": "2024-04-25T14:29:20.000000Z"}]}