Security News > 2024 > May > CISA warns of hackers exploiting Chrome, EoL D-Link bugs

CISA warns of hackers exploiting Chrome, EoL D-Link bugs
2024-05-19 14:17

The U.S. Cybersecurity & Infrastructure Security Agency has added three security vulnerabilities to its 'Known Exploited Vulnerabilities' catalog, one impacting Google Chrome and two affecting some D-Link routers.

Two days after disclosing CVE-2024-4761 Google announced that another vulnerability in Chrome's V8 engine has been exploited in the wild, but CISA has yet to add it to the KEV catalog.

CISA has not provided any background information about the two D-Link flaws and it is unclear who exploited them or when the agency recorded the attacks.

Google Chrome emergency update fixes 6th zero-day exploited in 2024.

Google fixes fifth Chrome zero-day exploited in attacks this year.

Google fixes third actively exploited Chrome zero-day in a week.


News URL

https://www.bleepingcomputer.com/news/security/cisa-warns-of-hackers-exploiting-chrome-eol-d-link-bugs/

Related news

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2024-05-14 CVE-2024-4761 Out-of-bounds Write vulnerability in multiple products
Out of bounds write in V8 in Google Chrome prior to 124.0.6367.207 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page.
network
low complexity
google fedoraproject CWE-787
8.8
8.8

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
D Link 82 0 9 29 34 72