CVE-2024-10230: Type Confusion in V8

Q: What is the severity of CVE-2024-10230?

CVE-2024-10230 has been categorized with a high severity level due to its potential impact on the affected software.

Q: How do I fix CVE-2024-10230?

To fix CVE-2024-10230, update your Microsoft Edge or Google Chrome to the latest version.

Q: Which software is affected by CVE-2024-10230?

CVE-2024-10230 affects Microsoft Edge (Chromium-based) and Google Chrome versions prior to 130.0.2849.56 and 130.0.6723.69 respectively.

Q: When was CVE-2024-10230 disclosed?

CVE-2024-10230 was disclosed as part of a security update by Chrome in October 2024.

Q: Is there a public exploit for CVE-2024-10230?

There is no public exploit specifically reported for CVE-2024-10230 at this time.

Published Oct 5, 2024

Updated

Chromium: CVE -2024-10230 Type Confusion in V8

Other sources

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.

— Microsoft

Type Confusion in V8 in Google Chrome prior to 130.0.6723.69 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

— MITRE

Credit

Seunghyun Lee@@0x10n

Affected Software

3 affected componentsFixes available

Microsoft Edge (Chromium-based)

Patch available

Microsoft Edge<130.0.2849.56

Google Chrome<130.0.6723.69

Event History

Oct 5, 2024

CVE Published

12:00 AM

Data Sourced

12:00 AM

SeverityWeakness

Oct 22, 2024

CVE Published

via MITRE·09:43 PM

Data Sourced

via MITRE·09:43 PM

DescriptionWeakness

Parent advisories

This vulnerability appears in the following advisories.

3335538213862105157

Peer vulnerabilities

Found alongside the following vulnerabilities.

Frequently Asked Questions

What is the severity of CVE-2024-10230?

CVE-2024-10230 has been categorized with a high severity level due to its potential impact on the affected software.

How do I fix CVE-2024-10230?