Sandbox Escape Vulnerability in Visuals in Google Chrome

Summary

The vulnerability is a high-severity "use-after-free" bug in the Visuals component of Google Chrome, known as CVE-2024-4671. Although there is confirmation that an exploit exists, there have been no instances of active exploitation at this time. The flaw poses a risk to users of all operating systems, including Mac, Windows, and Linux. The exploitation of the vulnerability can result in the reading of data from the user's computer, crashes, and potential takeover of the system. It is recommended that users update their Chrome browsers immediately to the latest version to protect against this vulnerability.

News Articles

The Hacker News

CVE-2024-4671CVE-2024-5274

Russian Hackers Exploit Safari and Chrome Flaws in High-Profile Cyberattack

Russian hackers exploit patched Safari and Chrome flaws in attacks on Mongolian government websites, targeting mobile users.

3 months ago

CN-SEC

CVE-2024-4671

Chrome浏览器存在远程代码执行漏洞（CVE-2024-4671）

Chrome浏览器UAF漏洞 （CVE-2024-4671） Google Chrome是一款广泛使用的跨平台Web浏览器，由Google开发。它基于Chromium开源项目，提供快速、安全和用户友好的浏览体验。Chrome浏览器在全球拥有大量用户，是最受欢迎的Web浏览器之一。 01 漏洞描述 漏洞类型：Chrome浏览器UAF漏洞...

3 months ago

TechTarget

CVE-2024-4761CVE-2024-4671

Google discloses 2 zero-day vulnerabilities in less than a week | T...

Google said two zero-day vulnerabilities, tracked as CVE-2024-4761 and CVE-2024-4671, have exploits available in the wild.

6 months ago

More News...