InfoSecBulletin Cybersecurity for mankind
Google released an urgent security update for Chrome browser. The update fixes a critical vulnerability that is already being exploited by hackers. The vulnerability, known as CVE-2024-4671, is a bug in the browser’s Visuals component.
CVE-2024-4671 is a type of vulnerability referred to as “use after free” in the Visuals component of the Chrome browser. This vulnerability occurs when dynamic memory is not properly handled during program operation. If a memory location is freed but the pointer to that memory is not cleared, an attacker can take advantage of this to run code on the system. This can result in unauthorized access or manipulation of data, or even control over the affected system.
SonicWall patched SSLVPN Vuln Allowing Firewall Crashing
GitLab Releases Security Update For Multiple Vulns
ISPAB president “whatsapp” got hacked via phishing link
Zyxel released patches 2 vulns in its USG FLEX H series firewalls
South Korea’s largest SK Telecom Hit by Malware: SIM-related info leaked
ChatGPT Develops Exploit for CVEs Before Public PoCs Share
TP-Link Router Vulns Allow to Execute Malicious SQL Commands
SSL.com’s domain validation system’s bug found: Hacker exploited
Amazon Follows Microsoft’s Lead, Halts Some Data Center Deals
Hackers Exploit Zoom’s Remote Control Feature for System Access
An anonymous researcher found a vulnerability and reported it to Google. The company quickly acknowledged the threat and released updates within two days to protect users.
Emergency updates have been released for Chrome users on the Stable Desktop channel. The updates are available for Mac, Windows, and Linux, with versions 124.0.6367.201 and 124.0.6367.202 for Mac and Windows, and version 124.0.6367.201 for Linux. The purpose of these updates is to fix a vulnerability and prevent potential exploits.
