-
Security updates
-
Product news
-
Next-Gen Vulnerability Management
-
Getting started
-
General
-
Operating status
-
Network & System Security
-
Web Application Security
-
Cloud Security
-
API Security
-
Phishing Simulation & Awareness Training
-
Attack Surface Management
-
Scanner Appliance
-
Device Agent
-
On-premise platform deployment
-
Asset management
-
Vulnerability manager
-
Reports
-
Digest reports
-
Organizer
-
Continuous monitoring
-
Integrations
-
Platform API
-
Remediation
-
Users
-
PCI DSS
-
Terms & conditions
-
Dashboard
Critical Vulnerability in: Google Chromes Use After Free component (CVE-2024-4671)
The vulnerability, identified as CVE-2024-4671, is considered high-severity with a CVSS score of 9.8. It is related to a "use after free" weakness in the Visuals component, which is responsible for rendering and displaying content in the browser.
No information is available on the attacks exploiting CVE-2024-4671, but Chrome vulnerabilities are often targeted by commercial spyware vendors.
2024-05-10 Initial discovery and coverage:
Holm Security has developed a vulnerability test to check if a vulnerable version is present in the host:
-
HID-2-1-5357523 - Google Chrome < 124.0.6367.201 Use After Free Vulnerability
Find out if you are vulnerable
To find out if your environment is vulnerable. You can create a scan profile that specifically looks for the mentioned vulnerability.
https://support.holmsecurity.com/knowledge/how-do-i-include-or-exclude-a-specific-vulnerability-in-a-scan