CVE-2024-8194

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Aug 28, 2024
Updated: Aug 30, 2024
CWE ID 843

Summary

CVE-2024-8194 is a high-severity vulnerability affecting Google Chrome versions prior to 128.0.6613.113, which allows remote attackers to exploit heap corruption through a specially crafted HTML page. The vulnerability arises from type confusion in the V8 engine, potentially leading to severe impacts on integrity and confidentiality. To remediate this issue, users should update their Chrome browsers to the latest version provided in the security release notes. Organizations may face significant risks if compromised, including unauthorized access and data manipulation, as the attack requires user interaction but can exploit network vectors. This vulnerability has a CVSS base score of 7.5 and is classified under CWE-843 (Access of Resource Using Incompatible Type).

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share