CVE-2024-0518

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Jan 16, 2024

Updated: Jul 3, 2024

CWE ID 843

Summary

CVE-2024-0518 is a type confusion vulnerability affecting Google Chrome versions prior to 120.0.6099.224. An attacker can exploit this issue by creating a malicious HTML page, leading to heap corruption. This vulnerability, classified as high severity by Chromium, allows a remote attacker to potentially execute arbitrary code. By manipulating the V8 JavaScript engine, an intruder could inject malicious code and gain unauthorized access to user data or take control of the user's browser. Users are encouraged to update their browsers to the latest version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uIDDSp
https://www.cve.org/CVERecord?id=CVE-2024-0518
https://nvd.nist.gov/vuln/detail/CVE-2024-0518

Back to Vulnerability Database

CVE-2024-0518

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations