CVE-2024-11115

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Nov 12, 2024
Updated: Nov 13, 2024
CWE ID 79

Summary

CVE-2024-11115 is a medium severity vulnerability affecting Google Chrome on iOS versions prior to 131.0.6778.69. This issue stems from insufficient policy enforcement in the Navigation feature, allowing a remote attacker to escalate privileges through a sequence of UI gestures. This flaw could potentially expose users to security risks such as unauthorized access or data theft. It is essential for users to update their Google Chrome browser on iOS devices to mitigate this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share