Remote Heap Corruption Vulnerability in Google Chrome Prior to 120.0.6099.224
Key Information
- Vendor
- Status
- Chrome
- Vendor
- CVE Published:
- 16 January 2024
Badges
Summary
The CVE-2024-0517 vulnerability in Google Chrome allows for remote attacks to exploit heap corruption through a crafted HTML page. Although there have not been reports of exploitation by ransomware groups, Google has released an update to fix this and three other security flaws. It is essential for users to update Chrome to version 120.0.6099.224 or later to mitigate the risk. The V8 JavaScript engine, which is used in Chrome and other Chromium-based browsers, is susceptible to these vulnerabilities and requires immediate patching. Other browser technologies have also been targeted by cyber attackers, highlighting the need for organizations to implement security measures for browser use. Additionally, Microsoft Edge offers an enhanced security mode feature that can mitigate this vulnerability and protect users against exploits.
Affected Version(s)
Chrome < 120.0.6099.224
News Articles
Exodus Intelligence CVE-2024-0517Exploit Techniques Archives - Exodus Intelligence
Exodus Blog Category: Exploit Techniques Mind the Patch Gap: Exploiting an io_uring Vulnerability in Ubuntu March 27,...
4 months ago
GitHub CVE-2024-0517CVE-2024-0517 - GitHub Advisory Database
GitHub is where people build software. More than 100 million people use GitHub to discover, fork, and contribute to over 420 million projects.
8 months ago
CVSS V3.1
Timeline
- 👾
Exploit exists.
Vulnerability started trending.
First article discovered by GBHackers on Security
Vulnerability published.
Vulnerability Reserved.