CVE-2024-2887
published 2024-03-26CVE-2024-2887: Type Confusion in WebAssembly in Google Chrome prior to 123.0.6312.86 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium…
PriorityP352high7.7CVSS 3.1
AVLACHPRNUIRSCCHIHAH
EPSS
19.88%
97.1th percentile
Type Confusion in WebAssembly in Google Chrome prior to 123.0.6312.86 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)
Affected
12 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| chromium | chromium | >= 0 < 123.0.6312.86-1~deb12u1 | 123.0.6312.86-1~deb12u1 |
| chromium | chromium | >= 0 < 123.0.6312.86-1 | 123.0.6312.86-1 |
| chromium | chromium | >= 0 < 123.0.6312.86-1 | 123.0.6312.86-1 |
| debian | chromium | < chromium 123.0.6312.86-1~deb12u1 (bookworm) | chromium 123.0.6312.86-1~deb12u1 (bookworm) |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| chrome | < 123.0.6312.86 | 123.0.6312.86 | |
| chrome | >= 123.0.6312.86 < 123.0.6312.86 | 123.0.6312.86 | |
| chrome_chrome | — | — | |
| msrc | microsoft_edge | — | — |
| msrc | microsoft_edge_extended_stable | — | — |
CVSS provenance
nvdv3.17.7HIGHCVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H
osv7.7HIGH
vendor_debian7.7HIGH
vendor_msrc7.7HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-q75f-2pp5-9phj: Type Confusion in WebAssembly in Google Chrome prior to 123
ghsa_unreviewed·2024-03-26
CVE-2024-2887 [HIGH] CWE-843 GHSA-q75f-2pp5-9phj: Type Confusion in WebAssembly in Google Chrome prior to 123
Type Confusion in WebAssembly in Google Chrome prior to 123.0.6312.86 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)
OSV
CVE-2024-2887: Type Confusion in WebAssembly in Google Chrome prior to 123
osv·2024-03-26·CVSS 7.7
CVE-2024-2887 [HIGH] CVE-2024-2887: Type Confusion in WebAssembly in Google Chrome prior to 123
Type Confusion in WebAssembly in Google Chrome prior to 123.0.6312.86 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)
Chrome
Stable Channel Update for Desktop: CVE-2024-2887
vendor_chrome·2024-03-26·CVSS 7.7
CVE-2024-2887 [HIGH] Stable Channel Update for Desktop: CVE-2024-2887
Stable Channel Update for Desktop
CVE-2024-2887: Type Confusion in WebAssembly. Reported by Manfred Paul, via Pwn2Own 2024 on 2024-03-21 We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel
Severity: high
Microsoft
Chromium: CVE-2024-2887 Type Confusion in WebAssembly
vendor_msrc·2024-03-12·CVSS 7.7
CVE-2024-2887 [HIGH] Chromium: CVE-2024-2887 Type Confusion in WebAssembly
Chromium: CVE-2024-2887 Type Confusion in WebAssembly
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ:
Microsoft Edge Channel
Microsoft Edge Version
Date Released
Based on Chromium Version
Stable
123.0.2420.65
3/26/2024
123.0.6312.86/.87
Extended Stable
122.0.2365.113
3/26/2024
122.0.6261.148
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
Ho
Debian
CVE-2024-2887: chromium - Type Confusion in WebAssembly in Google Chrome prior to 123.0.6312.86 allowed a ...
vendor_debian·2024·CVSS 7.7
CVE-2024-2887 [HIGH] CVE-2024-2887: chromium - Type Confusion in WebAssembly in Google Chrome prior to 123.0.6312.86 allowed a ...
Type Confusion in WebAssembly in Google Chrome prior to 123.0.6312.86 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)
Scope: local
bookworm: resolved (fixed in 123.0.6312.86-1~deb12u1)
bullseye: open
forky: resolved (fixed in 123.0.6312.86-1)
sid: resolved (fixed in 123.0.6312.86-1)
trixie: resolved (fixed in 123.0.6312.86-1)
No detection rules found.
No public exploits indexed.
Bleepingcomputer
Google tags a tenth Chrome zero-day as exploited this year
blogs_bleepingcomputer·2024-08-26·CVSS 8.8
CVE-2024-7971 [HIGH] Google tags a tenth Chrome zero-day as exploited this year
## Google tags a tenth Chrome zero-day as exploited this year
## Sergiu Gatlan
This was announced in an update to a blog post where the company revealed last week that it had fixed another high-severity zero-day vulnerability (CVE-2024-7971) caused by a V8 type confusion weakness.
"Updated on 26 August 2024 to reflect the in the wild exploitation of CVE-2024-7965 which was reported after this release," the company said in today's update . "Google is aware that exploits for CVE-2024-7971 and CVE-2024-7965 exist in the wild."
Google has fixed both zero-days in Chrome version 128.0.6613.84/.85 for Windows/macOS systems and version 128.0.6613.84 Linux users, which have been rolling out to all users in the Stable Desktop channel since Wednesday.
Even though Chrome will automatically update
Bleepingcomputer
Google fixes ninth Chrome zero-day tagged as exploited this year
blogs_bleepingcomputer·2024-08-21·CVSS 8.8
CVE-2024-7971 [HIGH] Google fixes ninth Chrome zero-day tagged as exploited this year
## Google fixes ninth Chrome zero-day tagged as exploited this year
## Sergiu Gatlan
Today, Google released a new Chrome emergency security update to patch a zero-day vulnerability tagged as exploited in attacks.
"Google is aware that an exploit for CVE-2024-7971 exists in the wild," the company said in an advisory published on Wednesday.
This high-severity zero-day vulnerability is caused by a type confusion weakness in Chrome's V8 JavaScript engine. Security researchers with the Microsoft Threat Intelligence Center (MSTIC) and Microsoft Security Response Center (MSRC) reported it on Monday.
Although such security flaws can commonly enable attackers to trigger browser crashes after data allocated into memory is interpreted as a different type, they can also exploit them for arbitra
Bleepingcomputer
Google fixes eighth actively exploited Chrome zero-day this year
blogs_bleepingcomputer·2024-05-24·CVSS 8.8
[HIGH] Google fixes eighth actively exploited Chrome zero-day this year
## Google fixes eighth actively exploited Chrome zero-day this year
## Bill Toulas
A "type confusion" vulnerability occurs when a program allocates a piece of memory to hold a certain type of data but mistakenly interprets the data as a different type. This can lead to crashes, data corruption, as well as arbitrary code execution.
Google has not shared technical details about the flaw to protect users from potential exploitation attempts from other threat actors and allow them to install a browser version that addresses the problem.
"Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven't yet fixed," said the t
Bleepingcomputer
Google fixes third actively exploited Chrome zero-day in a week
blogs_bleepingcomputer·2024-05-15·CVSS 8.8
CVE-2024-4671 [HIGH] Google fixes third actively exploited Chrome zero-day in a week
## Google fixes third actively exploited Chrome zero-day in a week
## Sergiu Gatlan
Although such flaws generally enable threat actors to trigger browser crashes by reading or writing memory out of buffer bounds, they can also exploit them for arbitrary code execution on targeted devices.
The other two actively exploited Chrome zero-days patched this week are CVE-2024-4671 (a use-after-free flaw in the Visuals component) and CVE-2024-4761 (an out-of-bounds write bug in the V8 JavaScript engine).
Microsoft also said it's "aware of the recent exploits existing in the wild" targeting CVE-2024-4947 and that its engineers are "actively working on releasing a security fix" for the Chromium-based Edge web browser.
## Fix rolling out to Stable channel users
The company fixed the zero-day fla
Bleepingcomputer
Google Chrome emergency update fixes 6th zero-day exploited in 2024
blogs_bleepingcomputer·2024-05-14·CVSS 8.8
CVE-2024-4761 [HIGH] Google Chrome emergency update fixes 6th zero-day exploited in 2024
## Google Chrome emergency update fixes 6th zero-day exploited in 2024
## Bill Toulas
Out-of-bounds write issues occur when a program is allowed to write data outside the specified array or buffer, potentially leading to unauthorized data access, arbitrary code execution, or program crashes.
“Google is aware that an exploit for CVE-2024-4761 exists in the wild,” reads the advisory .
The company fixed the security flaw with the release of 124.0.6367.207/.208 for Mac/Windows and 124.0.6367.207 for Linux. The updates will roll out to all users over the coming days/weeks.
For users of the ‘Extended Stable’ channel, fixes will be made available in version 124.0.6367.207 for Mac and Windows.
Chrome updates automatically when a security update is available, but users can confirm they’re run
Bleepingcomputer
Google fixes fifth Chrome zero-day exploited in attacks this year
blogs_bleepingcomputer·2024-05-10·CVSS 8.8
CVE-2024-4671 [HIGH] Google fixes fifth Chrome zero-day exploited in attacks this year
## Google fixes fifth Chrome zero-day exploited in attacks this year
## Bill Toulas
“Google is aware that an exploit for CVE-2024-4671 exists in the wild,” reads the advisory , without providing additional information.
Use after-free flaws are security flaws that occur when a program continues to use a pointer after the memory it points to has been freed, following the completion of its legitimate operations on that region.
Because the freed memory could now contain different data or be used by other software or components, accessing it could result in data leakage, code execution, or crash.
Google addressed the problem with the release of 124.0.6367.201/.202 for Mac/Windows and 124.0.6367.201 for Linux, with the updates rolling out over the coming days/weeks.
For users of the ‘Exten
Bleepingcomputer
Google fixes one more Chrome zero-day exploited at Pwn2Own
blogs_bleepingcomputer·2024-04-03·CVSS 8.8
[HIGH] Google fixes one more Chrome zero-day exploited at Pwn2Own
## Google fixes one more Chrome zero-day exploited at Pwn2Own
## Sergiu Gatlan
Palo Alto Networks security researchers Edouard Bochin and Tao Yan demoed the zero-day on the second day of Pwn2Own Vancouver 2024 to defeat V8 hardening.
Their double-tap exploit allowed them to execute arbitrary code on Google Chrome and Microsoft Edge, earning them a $42,500 award.
Google has now fixed the zero-day in the Google Chrome stable channel version 123.0.6312.105/.106/.107 (Windows and Mac) and 123.0.6312.105 (Linux), which will roll out worldwide over the coming days.
One week ago, Google fixed two more Chrome zero-days exploited at Pwn2Own Vancouver 2024. The first, a high-severity type confusion weakness (CVE-2024-2887) in the WebAssembly (Wasm) open standard, was targeted by Manfred Paul's
https://chromereleases.googleblog.com/2024/03/stable-channel-update-for-desktop_26.htmlhttps://issues.chromium.org/issues/330588502https://lists.fedoraproject.org/archives/list/[email protected]/message/3YUWGSMA5X2NQP5XEFCLRWNX6246GZ2C/https://lists.fedoraproject.org/archives/list/[email protected]/message/G3RKI7VTQSIAI3PVZGRCHOSELTQXQ5FQ/https://lists.fedoraproject.org/archives/list/[email protected]/message/IQMRHKDEG4J7TMRRRGUGW6GS4MVBX5IT/https://chromereleases.googleblog.com/2024/03/stable-channel-update-for-desktop_26.htmlhttps://issues.chromium.org/issues/330588502https://lists.fedoraproject.org/archives/list/[email protected]/message/3YUWGSMA5X2NQP5XEFCLRWNX6246GZ2C/https://lists.fedoraproject.org/archives/list/[email protected]/message/G3RKI7VTQSIAI3PVZGRCHOSELTQXQ5FQ/https://lists.fedoraproject.org/archives/list/[email protected]/message/IQMRHKDEG4J7TMRRRGUGW6GS4MVBX5IT/https://www.zerodayinitiative.com/blog/2024/5/2/cve-2024-2887-a-pwn2own-winning-bug-in-google-chrome
2024-03-26
Published