CVE-2024-6100

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Jun 20, 2024
Updated: Jul 3, 2024
CWE ID 843

Summary

CVE-2024-6100 is a newly disclosed type confusion vulnerability affecting Google Chrome prior to version 126.0.6478.114. This issue, which holds a high severity rating from Chromium, allows remote attackers to execute arbitrary code through a specially crafted HTML page. The vulnerability is located in V8, Google Chrome's JavaScript engine, and involves confusion between different data types, leading to unintended code execution. Users are advised to update their browsers to the latest version to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share