CISA Known Exploited Vulnerability

This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.

Remediation Deadline: Jun 10, 2024

CVE-2024-4947

High

EPSS 0.4%CISA KEV

Google/Chromium V8

Description

Google Chromium V8 contains a type confusion vulnerability that allows a remote attacker to execute code via a crafted HTML page.

0.4%

Higher than 57.7% of all CVEs

https://chromereleases.googleblog.com/2024/05/stable-channel-update-for-desktop_15.html; https://nvd.nist.gov/vuln/detail/CVE-2024-4947

ELEVATED

In CISA KEV

Published

May 20, 2024

Added to KEV

May 20, 2024

Remediation Due

Jun 10, 2024

Google

Chromium V8