UI Spoofing Vulnerability in Google Chrome Affects Autofill Feature
CVE-2024-8908

4.3MEDIUM

Key Information:

Vendor: Google
Status: Chrome
Vendor: CVE Published:; 17 September 2024

What is CVE-2024-8908?

A security vulnerability in Google Chrome's Autofill feature prior to version 129.0.6668.58 allows remote attackers to perform UI spoofing. This is accomplished through specially crafted HTML pages, making it possible for an attacker to mislead users by manipulating the interface they see. This vulnerability underscores the importance of updating to the latest version of Google Chrome to mitigate this risk.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Chrome 129.0.6668.58

References

https://chromereleases.googleblog.com/2024/09/stable-chan...

https://issues.chromium.org/issues/337222641

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Sep 17, 2024

JSON

Google

What is CVE-2024-8908?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.