CVE-2024-4761

ENISA EUVD: EUVD-2024-44358 ↗
Exploited in the Wild ✓ Confirmed 0-Day ★ Google Project Zero
Triaged: March 3, 2026 13 articles Published: 2024-05-14
VulnLookup ↗ NVD ↗ EUVD ↗ MITRE ↗ Advisory ↗ P0 Sheet ↗ CISA KEV ↗

EPSS Score

Source: FIRST.org · 2026-05-23
3.15%
probability
This CVE has a 3.15% probability of being exploited in the next 30 days.
0% Top 87.1th percentile of all CVEs 100%

CVSS v3.1

Source: VulnerabilityLookup (CIRCL)
8.3
HIGH
Attack Vector
Network
Attack Complexity
High
Privileges Required
None
User Interaction
Required
Scope
Changed
Confidentiality
High
Integrity
High
Availability
High
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

Description

VulnerabilityLookup (CNA)
Out of bounds write in V8 in Google Chrome prior to 124.0.6367.207 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: High)

Affected Products

Google
Chrome
124.0.6367.207

Attack Intelligence

Google Project Zero

Discovered
May 9, 2024
Patched
May 13, 2024
Reported by
???
Root Cause Analysis
???

Exploits & PoC

michredteam/CVE-2024-4761

High CVE-2024-4761 Exploit

4 2024-05-14
1 repo — triés par ⭐ Rechercher sur GitHub ↗

Signal Intelligence

Confidence
92%
EPSS 3.15%
CVSS v3.1 8.3
Mentions 13
Last Seen Aug 26, 2024

CNA Information

CNA Assigner
Chrome

Analyst Note

CVE-2024-4761 is confirmed as an actively exploited zero-day in Chrome v124 with a HIGH CVSS score (8.3), documented by Google Project Zero and extensively reported by reputable sources like BleepingComputer. The out-of-bounds write vulnerability in V8 represents a critical memory safety issue with demonstrated real-world exploitation.

Triage Info

Decided atMar 03, 2026
Published DateMay 14, 2024