CVE-2024-1283

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Feb 7, 2024
Updated: Feb 14, 2024
CWE ID 787

Summary

CVE-2024-1283 is a newly disclosed vulnerability affecting Google Chrome versions prior to 121.0.6167.160. This issue involves a heap buffer overflow in Skia, a graphics library used by Chrome. A remote attacker can potentially exploit this vulnerability by crafting a malicious HTML page, resulting in heap corruption. The severity level of this vulnerability, according to Chromium's security team, is considered high. Hence, users are encouraged to update their browsers to the latest version as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share