In this post, I’ll explain how to exploit CVE-2023-3420, a type confusion vulnerability in v8 (the Javascript engine of Chrome), that I reported in June 2023 as bug 1452137. The bug was fixed in version 114.0.5735.198/199.
Source: Github
Getting RCE in Chrome with incorrect side effect in the JIT compiler
Date:
Categorie(s):
- Okta Warns of Unprecedented Surge in Proxy-Driven Credential Stuffing Attacks
- Good Security Is About Iteration, Not Perfection.
- Week in review: Two Cisco ASA zero-days exploited, MITRE breach, GISEC Global 2024
- Security budgets are growing, but so is vendor sprawl
- The Top 5 Benefits Of Using Outsourcing Services