CVE-2024-8905
CVSS 3.1 Score 8.8 of 10 (high)
Details
Summary
CVE-2024-8905 describes a vulnerability in the V8 engine of Google Chrome prior to version 129.0.6668.58, which allows remote attackers to exploit stack corruption through a specially crafted HTML page. Affected products include various versions of Google Chrome and associated applications that utilize the V8 engine. The vulnerability has been rated as having a base severity score of 8.8, indicating a high risk due to potential confidentiality and integrity impacts, requiring user interaction for exploitation via network access. To remediate this issue, users are advised to update their Google Chrome installations to version 129.0.6668.58 or later as soon as possible. If left unaddressed, this vulnerability could lead to significant security breaches within organizations utilizing affected systems.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.