CVE-2024-6996

CVSS 3.1 Score 3.1 of 10 (low)

Details

Published Aug 6, 2024

Updated: Aug 7, 2024

CWE ID 362

Summary

CVE-2024-6996 is a newly disclosed vulnerability in Google Chrome prior to version 127.0.6533.72. This issue permits a remote attacker to execute UI spoofing by exploiting a race condition in Frames. The attacker can trigger this vulnerability by convincing a user to perform specific UI gestures on a maliciously crafted HTML page. The Chromium security team has classified this vulnerability as having medium severity.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/xLj7Vy
https://www.cve.org/CVERecord?id=CVE-2024-6996
https://nvd.nist.gov/vuln/detail/CVE-2024-6996

Back to Vulnerability Database

CVE-2024-6996

CVSS 3.1 Score 3.1 of 10 (low)

Details

Summary

Advisories, Assessments, and Mitigations