The CVE-2024-4671 vulnerability has been exploited by hackers. Today, Google again released a Chrome update to fix the CVE-2024-4761 security vulnerability, which has also been exploited by hackers.
The new version introduced this time is Chrome v124.0.6367.207/208. The CVE-2024-4761 vulnerability repaired belongs to the write out of bounds problem of the V8 engine, which may lead to unauthorized data access, arbitrary code execution, or triggering crash.
This vulnerability was also submitted by an anonymous researcher on May 9. I wonder if it is the same anonymous security researcher as CVE-2024-4671.
It is recommended that users of Chrome upgrade to a new version immediately to ensure security. After most users have upgraded to an unaffected version, Google will gradually disclose the details of the security vulnerabilities that have been fixed in Chrome.
In addition, it is necessary to remind other browser users, including Microsoft Edge, Vivaldi, Opera, Brave and other browsers, that they will also release updates in the future, so users of these browsers should also pay attention to and upgrade new versions in a timely manner.