CVE-2024-7005

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 127.0.6533.72 Microsoft Edge (affected versions not specified)

Description The issue is related to insufficient validation of untrusted input in the Safe Browsing feature, which can be exploited by a remote attacker to bypass discretionary access control via a malicious file. This can be achieved if the attacker convinces a user to engage in specific UI gestures. The estimated number of potentially affected devices worldwide is not provided.

Recommendations For Google Chrome versions prior to 127.0.6533.72, update to version 127.0.6533.72 or later to resolve the issue. For Microsoft Edge, at the moment, there is no information about a newer version that contains a fix for this vulnerability.