Out of Bounds Read Vulnerability in WebTransport Affects Google Chrome
CVE-2024-7255

8.8HIGH

Key Information:

Vendor
Google
Status
Chrome
Vendor
CVE Published:
1 August 2024

Badges

πŸ“° News Worthy

Summary

An out of bounds read vulnerability affecting WebTransport functionality in Google Chrome versions before 127.0.6533.88 emerges due to improper handling of memory accesses. This flaw enables a remote attacker to craft a malicious HTML page that can lead to potential exposure of sensitive data by accessing memory outside the intended limits. Users of affected versions are strongly advised to update their browsers to mitigate the risks associated with this vulnerability and ensure their systems remain secure.

News Articles

favicon imageLatest Hacking News - Exploits, Vulnerabilities, Tech and Tutorials

Google Chrome 127 Release Addressed Multiple Security Bugs

Google addressed one critical and two high-severity flaws with the Chrome 127 release for Desktop and Android and urged users to update.

5 months ago

favicon imageGBHackers on Security

Chrome Security Update: Patch for Critical Flaw that Leads to Exploitation

Chrome Security's latest update includes three significant security fixes, two of which are classified as high severity and one as critical.

5 months ago

References

https://chromereleases.googleblog.com/2024/07/stable-chan...
https://issues.chromium.org/issues/352872238

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • πŸ“°

    First article discovered by GBHackers on Security

Collectors

NVD DatabaseGoogle Feed2 News Article(s)
.