Google Chrome Zero Day Vulnerability
- NOVEMBER 18TH, 2024
- 1min read
Introduction
We’d like to bring to your attention a high-severity vulnerability in Google Chrome browsers and Chromium-based browsers with active ongoing exploits. CVE-2024-7971 stems from an issue in Chrome’s V8 JavaScript engine.
This vulnerability allows a remote attacker to execute code via a crafted HTML page, which can lead to browser crashes after data allocated into memory is interpreted as a different type. This can be exploited to execute arbitrary code, enabling an attacker to execute commands that affect the host system without restriction, like installing malware, creating backdoors, and gaining unauthorised access to sensitive data.
Steps to Take
- Update Google Chrome: Google has released new versions for Windows, macOS, and Linux. To update:
- Click the three ellipses (â‹®) in the top right corner.
- Scroll down and click ‘Help’.
- Click ‘About Google Chrome’ and update to the latest version.
- Click ‘Relaunch’ to apply the update.
- Update Chromium-Based Browsers: Microsoft Edge, Opera, and Brave should be updated as soon as patches become available.
Explore more CIL Advisories
Phishing Emails
IntroductionPhishing attacks are becoming increasingly sophisticated, with malicious actors exploiting current events like the Paris 2024 Olympics Games to run…
DECEMBER 16TH, 2024
Read More
Preventing Deep Fake Scams
IntroductionMalicious actors always find creative ways to defraud unsuspecting individuals; deep fake scams are one of the latest ways with…
DECEMBER 9TH, 2024
Read More
Trouble Looms: Ransomware Attacks on the Rise
IntroductionRansomware is a type of malware which prevents you from accessing your device and the data stored on it, usually…
DECEMBER 2ND, 2024
Read MoreNever miss a CIL Security Advisory
Stay informed with the latest security updates and insights from CIL.
