CVSS 3.1 Score 4.3 of 10 (medium)


Published Mar 20, 2024
Updated: Apr 1, 2024


CVE-2024-2631 is a vulnerability that affects Google Chrome on iOS devices prior to version 123.0.6312.58. It is rated as medium severity with a base score of 4.3 according to the National Vulnerability Database (NVD). The vulnerability allows a remote attacker to perform UI spoofing through a crafted HTML page and requires user interaction. The impact of this vulnerability on an organization is low in terms of confidentiality, but it has a potential impact on the integrity of the system. There is no requirement for privileges, and the attack vector is through the network. The vulnerability can be remediated by updating Google Chrome to version 123.0.6312.58 or later, which addresses the issue and prevents UI spoofing attacks from being successful.

Note: This summary provides factual information about the vulnerability without providing any opinion or bias.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-2631 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options