Two critical use-after-free vulnerabilities have been disclosed, one in Chrome/Chromium's Dawn WebGPU implementation (CVE-2024-65281) allowing renderer compromise via a crafted HTML page, and another in Firefox's accessibility API (CVE-2024-64688, CVSS 10.0) enabling sandbox escape. The article notes a concerning increase in such vulnerabilities but does not provide specific affected version ranges, fixed versions, or workarounds for either CVE.
Hak5 -- Cyber Security Education, Inspiration, News & Community since 2005: -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆ Our Site → https://www.hak5.org Shop → http://hakshop.myshopify.com/ Community → https://www.hak5.org/community Subscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1 Support → https://www.patreon.com/threatwire Contact Us → http://www.twitter.com/hak5 -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆ ____________________________________________ Founded in 2005, Hak5's mission is to advance the InfoSec industry. We do this through our award winning educational podcasts, leading pentest gear, and inclusive community – where all hackers belong.