Google Chromium V8, Type Confusion, CVE-2024-0519 (High)

By /

Listen to this Post

The CVE-2024-0519 vulnerability is a type confusion issue within the V8 JavaScript engine’s just-in-time (JIT) compiler. During compilation, TurboFan fails to properly validate the type of an object before optimization passes. An attacker can craft JavaScript code that triggers an inlining optimization for a function, passing an object of an unexpected type. This corrupts the compiler’s type system, leading to the creation of optimized code that performs dangerous machine-level operations on the wrong type of memory pointer. This memory corruption can be leveraged to achieve remote code execution within the context of the browser’s renderer sandbox.
Platform: Google Chromium
Version: prior to 121.0.6167.85
Vulnerability: Type Confusion
Severity: High

date: 2024-01-16

Prediction: 2024-01-24

What Undercode Say:

`git clone https://chromium.googlesource.com/chromium/src.git`

`grep -r “Map::FindField” –include=”.cc” src/v8/</h2>
<h2 style="color: blue;">./v8/tools/turbolizer.py pipeline.cfg`

How Exploit:

Crafted JavaScript triggers optimization.

Exploits incorrect type assumptions.

Leads to memory corruption.

Bypasses sandbox for RCE.

Protection from this CVE:

Update Chrome/Chromium.

Apply vendor patch.

Enable auto-updates.

Impact:

Remote Code Execution.

Sandbox Escape.

Compromised system integrity.

🎯Let’s Practice Exploiting & Learn Patching For Free:

Sources:

Reported By: nvd.nist.gov
Extra Source Hub:
Undercode

🔐JOIN OUR CYBER WORLD [ CVE News • HackMonitor • UndercodeNews ]

💬 Whatsapp | 💬 Telegram

📢 Follow DailyCVE & Stay Tuned:

𝕏 formerly Twitter 🐦 | @ Threads | 🔗 Linkedin Featured Image

Scroll to Top