CVE-2024-6998
CVSS 3.1 Score 8.8 of 10 (high)
Details
Published Aug 6, 2024
Updated: Aug 7, 2024
CWE ID 416
Summary
CVE-2024-6998 is a use-after-free vulnerability affecting Google Chrome versions prior to 127.0.6533.72. This issue occurs in the User Education component and can be exploited by a remote attacker. By persuading a user to perform specific UI actions on a maliciously crafted HTML page, the attacker may potentially corrupt the heap, leading to security vulnerabilities of medium severity. This Chromium security issue can be mitigated by updating Google Chrome to the latest version.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share