CVE-2024-7003
CVSS 3.1 Score 4.3 of 10 (medium)
Details
Published Aug 6, 2024
Updated: Aug 7, 2024
CWE ID 358
Summary
CVE-2024-7003 is a low severity vulnerability affecting FedCM in Google Chrome versions prior to 127.0.6533.72. An attacker can exploit this inappropriate implementation to carry out UI spoofing. The spoofing occurs when a user is manipulated into specific UI gestures on a crafted HTML page. This issue allows an attacker to deceive users into divulging sensitive information or performing unwanted actions, posing a potential security risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share