Out of Bounds Write in V8 Prior to 124.0.6367.207 Allows Remote Attacker to Perform Out of Bounds Memory Write
CVE-2024-4761

8.8HIGH

Key Information:

Vendor: Google
Status: Chrome
Vendor: CVE Published:; 14 May 2024

Badges

📈 Trended📈 Score: 9,960💰 Ransomware👾 Exploit Exists🟡 Public PoC🦅 CISA Reported📰 News Worthy

What is CVE-2024-4761?

CVE-2024-4761 is a high-severity vulnerability found in the V8 JavaScript engine utilized by Google Chrome prior to version 124.0.6367.207. This vulnerability enables a remote attacker to perform out of bounds memory writes by leveraging specially crafted HTML pages. As Google Chrome is one of the most widely used web browsers globally, this vulnerability could negatively impact organizations by compromising user data, leading to potential unauthorized access to sensitive information, and enhancing the risk of broader network infiltrations.

Technical Details

The vulnerability involves an out of bounds write condition within the V8 engine, which can occur when the engine processes user input, particularly from HTML pages. An attacker could exploit this flaw by crafting a malicious web page and enticing users to visit it. The underlying flaw arises from improper memory management, allowing for writes that exceed established memory boundaries. This behavior can result in memory corruption, which can be exploited in various ways, including code execution or further manipulation of the system's memory states.

Impact of the Vulnerability

Remote Code Execution: The primary risk associated with CVE-2024-4761 is the potential for remote code execution, which can allow attackers to run arbitrary code on an affected system without prior authentication. This significantly enhances the attack surface for threat actors.
Data Breaches: Exploitation of this vulnerability may enable unauthorized access to sensitive personal data or credentials stored within the browser, leading to significant data breaches. Organizations could face legal and reputational consequences as a result of compromised user data.
Network Compromise: Once an attacker executes code on a victim’s system, they may gain a foothold within the network, paving the way for further attacks, lateral movement, or deployment of additional malware, including ransomware. This poses a long-term risk to an organization’s cybersecurity integrity.

CISA Reported

CISA provides regional cyber and physical services to support security and resilience across the United States. CISA monitor the most dangerious vulnerabilities and have identifed as being exploited but is not known by the CISA to be used in ransomware campaigns. This is subject to change at pace as recent news articles suggest the vulnerability is being used by ransomware groups.

The CISA's recommendation is: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Affected Version(s)

Chrome 124.0.6367.207

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2024-4761
Created by michredteam

News Articles

Hackhunting

CVE-2024-4761

Google Chrome Releases 125.0.6422.76/77 Fixing Multiple Vulnerabilities

Google Chrome has released version 125.0.6422.76/.77, fixing multiple vulnerabilities including Use After Free, Type Confusion, and Heap Buffer Overflow. Severity is pending, but CVEs have been assigned. Bug fixes for six vulnerabilities, with rewards for four, including a critical zero-day vulnerab...

8 months ago

BleepingComputer

CVE-2024-4761

CISA warns of hackers exploiting Chrome, EoL D-Link bugs

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) has added three security vulnerabilities to its 'Known Exploited Vulnerabilities' catalog, one impacting Google Chrome and two affecting some D-Link routers.

8 months ago