Security News > 2024 > August > Google Fixes High-Severity Chrome Flaw Actively Exploited in the Wild
2024-08-22 05:19
Google has rolled out security fixes to address a high-severity security flaw in its Chrome browser that it said has come under active exploitation in the wild. Tracked as CVE-2024-7971, the vulnerability has been described as a type confusion bug in the V8 JavaScript and WebAssembly engine. "Type confusion in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to exploit heap
News URL
https://thehackernews.com/2024/08/google-fixes-high-severity-chrome-flaw.html
Related news
- Google rolls back decision to kill third-party cookies in Chrome (source)
- Google's plan to drop third-party cookies in Chrome crumbles (source)
- Google Abandons Plan to Phase Out Third-Party Cookies in Chrome (source)
- Google Chrome now warns about risky password-protected archives (source)
- Google Chrome now asks for passwords to scan protected archives (source)
- Oops. Apple relied on bad code while flaming Google Chrome's Topics ad tech (source)
- Google fixes Chrome Password Manager bug that hides credentials (source)
- Google apologizes for breaking password manager for millions of Windows users with iffy Chrome update (source)
- Google Chrome adds app-bound encryption to block infostealer malware (source)
- Google Chrome Adds App-Bound Encryption to Protect Cookies from Malware (source)
Related Vulnerability
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-21 | CVE-2024-7971 | Type Confusion vulnerability in Google Chrome Type confusion in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to exploit heap corruption via a crafted HTML page. | 8.8 |