CVE-2024-9958 - UI Spoofing in Google Chrome Picture-in-Picture — Full Analysis & Exploit Explained
Published June 2024
Exploit Difficulty: Medium · Severity: Medium
Scope: Chrome < 130..6723.58 · Reported by Google Project Zero
Introduction
On June 2024, Google published
CVE-2024-9962 - How a Chrome Permissions Bug Let Attackers Spoof the UI (And What You Need to Know)
A new vulnerability tracked as CVE-2024-9962 has been causing ripples in the cybersecurity world for anyone using Google Chrome. If you haven't heard
CVE-2024-49214 - Bypassing HAProxy’s IP Allow/Block List Using QUIC -RTT
A new security flaw, CVE-2024-49214, was discovered in HAProxy—a popular open-source proxy and load balancer. This vulnerability allows attackers to bypass IP allow/block
CVE-2024-9602 - Type Confusion in V8 Allows Remote Out-of-Bounds Write in Google Chrome (Exploit Explained)
A serious security bug, tracked as CVE-2024-9602, was discovered and fixed in Google Chrome, specifically in its V8 JavaScript engine, before version 129..6668.100.
CVE-2024-9123 - Integer Overflow in Skia Lets Hackers Attack Google Chrome Before 129..6668.70
CVE-2024-9123 is a high-severity security hole affecting Google Chrome, caused by an integer overflow in Skia (the graphics engine). If you use Chrome versions older
Episode
00:00:00
00:00:00