Security update addresses an exploited type confusion vulnerability in Google Chrome
- Threat ID:
- CC-4501
- Threat Severity:
- Medium
- Published:
- 24 May 2024 2:05 PM
Report a cyber attack: call 0300 303 5222 or email [emailprotected]
Page contents
Summary
Security update addresses an exploited type confusion vulnerability in Google Chrome
Affected platforms
The following platforms are known to be affected:
Threat details
Introduction
Google has released a security update that addresses one exploitedvulnerabilityin Google Chrome for Windows, macOS, and Linux.
CVE-2024-5274 is a type confusion vulnerability in V8, which is the JavaScript (JS) engine responsible for executing JS code in Chrome.
Exploit for CVE-2024-5274 in the wild
Google acknowledges that an exploit for CVE-2024-4947 exists in the wild.
Remediation advice
Affected organisations are encouraged to review theChrome Release 125.0.6422.112/.113advisory and apply the update for the latest release.
Definitive source of threat updates
CVE Vulnerabilities
Last edited: 24 May 2024 2:06 pm