Skip to main content

Security update addresses an exploited type confusion vulnerability in Google Chrome

Threat ID:CC-4501
Threat Severity:Medium
Published:24 May 2024 2:05 PM

Summary

Security update addresses an exploited type confusion vulnerability in Google Chrome

Affected platforms

The following platforms are known to be affected:

Threat details

Introduction

Google has released a security update that addresses one exploited vulnerability in Google Chrome for Windows, macOS, and Linux.

CVE-2024-5274 is a type confusion vulnerability in V8, which is the JavaScript (JS) engine responsible for executing JS code in Chrome. 


Exploit for CVE-2024-5274 in the wild

Google acknowledges that an exploit for CVE-2024-4947 exists in the wild.

Remediation advice

Affected organisations are encouraged to review the Chrome Release 125.0.6422.112/.113 advisory and apply the update for the latest release.

Definitive source of threat updates

CVE Vulnerabilities

StatusReserved
CVE-2024-5274

Last edited: 24 May 2024 2:06 pm

Back to top