CVE-2024-7975
CVSS 3.1 Score 4.3 of 10 (medium)
Details
Summary
CVE-2024-7975 is a vulnerability in Google Chrome versions prior to 128.0.6613.84, which allows remote attackers to exploit UI spoofing by using a specially crafted HTML page. The issue has been rated with a medium severity level, with an exploitability score of 2.8 and a base score of 4.3 according to the NVD, indicating low integrity impact and no confidentiality or availability impact. To remediate this vulnerability, users are advised to update their Google Chrome browsers to the latest version available. The potential danger of this vulnerability lies in its ability to mislead users through UI spoofing, which may lead them into inadvertently providing sensitive information or taking unintended actions. Affected products include various builds of Google Chrome that are listed in the advisory references provided by Chromium's security updates.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.