CVE-2024-40618

CVSS 3.1 Score 9.6 of 10 (high)

Details

Published Jul 11, 2024

Updated: Jul 12, 2024

CWE ID 79

Summary

CVE-2024-40618 is a vulnerability affecting Whale browser versions prior to 3.26.244.21. It allows an attacker to inject malicious JavaScript code into the browser due to insufficient sanitization during the processing of a built-in extension. This issue poses a significant risk, as attackers can exploit it to execute arbitrary code, potentially leading to data theft, unauthorized access, or other malicious activities. Users are advised to update their browsers to the latest version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Naver Whale

Affected Vendors

Naver

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/w4s-PO
https://www.cve.org/CVERecord?id=CVE-2024-40618
https://nvd.nist.gov/vuln/detail/CVE-2024-40618

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners