CVE-2024-10826

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Nov 6, 2024

CWE ID 416

Summary

CVE-2024-10826 is a newly disclosed vulnerability affecting Google Chrome on Android versions prior to 130.0.6723.116. This issue involves a use-after-free condition in the Family Experiences feature, which can lead to heap corruption. A remote attacker could potentially exploit this vulnerability by crafting a malicious HTML page and luring a user to visit it, gaining control over the affected device. The implications of this High-severity Chromium security flaw could include unauthorized access or data theft. Users are urged to update Google Chrome on their Android devices to the latest version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/0NPwFs
https://www.cve.org/CVERecord?id=CVE-2024-10826
https://nvd.nist.gov/vuln/detail/CVE-2024-10826

Back to Vulnerability Database

CVE-2024-10826

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations