InfoSecBulletin Cybersecurity for mankind
Google fixed a serious Chrome bug known as CVE-2024-4058 in the ANGLE graphics layer engine along with four vulnerabilities in the Chrome web browser.
CVE-2024-4058 is a vulnerability in the ANGLE graphics layer engine. It allows attackers to execute arbitrary code on macOS systems. Toan Pham and Bao Pham from Qrious Secure reported a serious issue on 2024-04-02 and received a $16,000 reward for their research.
NVIDIA NeMo Framework Vuln Allow Attackers RCE
Cisco Issued Urgent Security Advisories For Multiple Products
SonicWall patched SSLVPN Vuln Allowing Firewall Crashing
GitLab Releases Security Update For Multiple Vulns
ISPAB president “whatsapp” got hacked via phishing link
Zyxel released patches 2 vulns in its USG FLEX H series firewalls
South Korea’s largest SK Telecom Hit by Malware: SIM-related info leaked
ChatGPT Develops Exploit for CVEs Before Public PoCs Share
TP-Link Router Vulns Allow to Execute Malicious SQL Commands
SSL.com’s domain validation system’s bug found: Hacker exploited
The IT giant fixed a serious flaw called CVE-2024-4059, an Out of Bounds read in the V8 API, discovered by Eirik on 2024-04-08. Google fixed a high-severity flaw in Dawn. The flaw, tracked as CVE-2024-4060, is a Use after Free vulnerability in Dawn. Dawn is an open-source and cross-platform implementation of the WebGPU standard. The flaw was reported by wgslfuzz on April 9, 2024.
The Stable channel has been updated to version 124.0.6367.78/.79 for Windows and Mac. The Linux version 124.0.6367.78 will be released in the next few days/weeks.
