CVE-2024-6994

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Aug 6, 2024

Updated: Aug 7, 2024

CWE ID 122

CWE ID 787

Summary

CVE-2024-6994 is a medium severity heap buffer overflow vulnerability affecting Google Chrome versions prior to 127.0.6533.72. This issue lies within the Layout component, enabling a remote attacker to potentially exploit heap corruption via a specially crafted HTML page. The successful exploitation could result in arbitrary code execution, leading to potential security risks. Users are encouraged to update their Chrome browsers to the latest version to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/xLh4ms
https://www.cve.org/CVERecord?id=CVE-2024-6994
https://nvd.nist.gov/vuln/detail/CVE-2024-6994

Back to Vulnerability Database

CVE-2024-6994

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations