CVE-2024-1077

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Jan 30, 2024

Updated: Jul 3, 2024

CWE ID 416

Summary

CVE-2024-1077 is a newly disclosed vulnerability affecting Google Chrome versions prior to 121.0.6167.139. This issue involves a use-after-free condition in the Network component, which can lead to heap corruption. A malicious file can be leveraged by a remote attacker to potentially exploit this vulnerability, making it a significant security concern with a Chromium severity rating of high. Successful exploitation could allow an attacker to execute arbitrary code or gain unauthorized access to sensitive information. Users are strongly advised to update their Google Chrome browsers to the latest version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database