Skip to main content

ChromeOS Multiple Vulnerabilities

Release Date: 11 Jun 2024 5232 Views

RISK: Extremely High Risk

TYPE: Operating Systems - Others OS

TYPE: Others OS

Multiple vulnerabilities were identified in ChromeOS. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition and remote code execution on the targeted system.

 

Notes:

CVE-2024-5274 is being exploited in the wild. The vulnerability is caused due to a type confusion error in V8 JavaScript engine and can be exploited to execute arbitrary code inside a sandbox via a crafted HTML page.


Impact

  • Remote Code Execution
  • Denial of Service

System / Technologies affected

  • Version prior to 120.0.6099.314 (Platform Version: 15662.111)

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Apply fixes issued by the vendor. For detail, please refer to the link below:


Vulnerability Identifier


Source


Related Link