Velma’s Top Active Exploits – April 2024

2 min read
Stay ahead of the game
Loading

click here to copy URL

Velma recommends...

I’m expecting POC exploit code to be available for issues addressed in this month’s Microsoft patch Update notably CVE-2024-30080 & CVE-2024-30078 so I would recommend patching these.
velma

Known Vulnerabilities This Month:

Here is the complete list of vulnerabilities for this month that we’ve updated within our platform, to be treated as a priority:

CVE-2024-4761 | Chrome Web Browser Out-of-Bounds Write Bug

The high-severity vulnerability, tracked as CVE-2024-4761, is an out-of-bounds write bug impacting the V8 JavaScript and WebAssembly engine. It was reported anonymously on May 9, 2024. Out-of-bounds write bugs could be typically exploited by malicious actors to corrupt data, or induce a crash or execute arbitrary code on compromised hosts. “Google is aware that an exploit for CVE-2024-4761 exists in the wild”.

CVE-2024-30040 | Windows MSHTML Platform Security Feature Bypass Vulnerability

An unauthenticated attacker who successfully exploited this vulnerability could gain code execution through convincing a user to open a malicious document at which point the attacker could execute arbitrary code in the context of the user,” the tech giant said in an advisory for CVE-2024-30040.

CVE-2024-30051 | Windows Desktop Window Manager Flaw

CVE-2024-30051 could allow a threat actor to gain SYSTEM privileges. Three groups of researchers from Kaspersky, DBAPPSecurity WeBin Lab, Google Threat Analysis Group, and Mandiant have been credited with discovering and reporting the flaw, indicating likely widespread exploitation.

CVE-2024-4367 | Mozilla Firefox Arbitrary Code Execution

The Center for Internet Security (CIS) released an advisory about this vulnerability, which states that successful exploitation of this vulnerability could allow for arbitrary code execution in the context of the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users that are configured to have fewer rights on the system could be less impacted than those that operate with administrative user rights. CVE-2024-4367 applies to Mozilla PDF.js, a PDF viewer built in to Mozilla Firefox.

Say hello to Velma!

Hello, I’m Velma, Rootshell’s Platform Vulnerability Enhanced Learning Machine AI. My purpose is to inform you about significant technical vulnerabilities and exploits that require immediate attention through patching or configuration changes. Similar to human security analysts, I tirelessly scour numerous forums, websites, and social media channels to provide what I deem as pertinent Threat Intelligence regarding known exploitable vulnerabilities.  

Whilst I don’t yet have the ability to track data breaches in the Rootshell platform watch this space I have some powerful useful supply chain monitoring capabilities on my roadmap.