Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

CVE-2024-7965 PoC — Google Chrome 安全漏洞

Source
https://github.com/XiaomingX/cve-2024-7965-poc
Associated Vulnerability
Title:Google Chrome 安全漏洞 (CVE-2024-7965)
Description:Inappropriate implementation in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Description
CVE-2024-7965是Google Chrome浏览器中V8 JavaScript引擎的一个高危漏洞。该漏洞源于V8引擎在处理特定JavaScript代码时实现不当,导致堆内存损坏。攻击者可通过诱导用户访问包含特制JavaScript的恶意网页,利用此漏洞在Chrome渲染器中执行任意代码。
Readme
# cve-2024-7965-poc
CVE-2024-7965是Google Chrome浏览器中V8 JavaScript引擎的一个高危漏洞。该漏洞源于V8引擎在处理特定JavaScript代码时实现不当,导致堆内存损坏。攻击者可通过诱导用户访问包含特制JavaScript的恶意网页,利用此漏洞在Chrome渲染器中执行任意代码。成功利用该漏洞可能导致浏览器崩溃、信息泄露,甚至完全控制受害者的浏览器环境。该漏洞的CVSS评分为8.8,表明其危害性较高。 

需要注意的是,CVE-2024-7965主要影响运行ARM64架构的设备,包括2020年11月后发布的Apple笔记本电脑和所有版本的Android智能手机。因此,受影响的用户应尽快将Chrome浏览器更新至128.0.6613.84或更高版本,以防范潜在的攻击风险。
File Snapshot

Log in to view the POC file snapshot cached by Shenlong Bot

Log in to view
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →