CVE-2024-6996

CVSS 3.1 Score 3.1 of 10 (low)

Details

Published Aug 6, 2024
Updated: Aug 7, 2024
CWE ID 362

Summary

CVE-2024-6996 is a newly disclosed vulnerability in Google Chrome prior to version 127.0.6533.72. This issue permits a remote attacker to execute UI spoofing by exploiting a race condition in Frames. The attacker can trigger this vulnerability by convincing a user to perform specific UI gestures on a maliciously crafted HTML page. The Chromium security team has classified this vulnerability as having medium severity.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share