CVE-2024-3839

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Apr 17, 2024
Updated: Jul 3, 2024
CWE ID 125

Summary

CVE-2024-3839 is a medium severity vulnerability affecting Google Chrome versions prior to 124.0.6367.60. This issue involves an out-of-bounds read in the Font handling component, which can be exploited by a remote attacker through a specially crafted HTML page. By manipulating the font data, the attacker may gain access to potentially sensitive information residing in the process memory. This vulnerability poses a risk to user privacy and security.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share