The GitHub Blog The GitHub Blog ·

Attack of the clones: Getting RCE in Chrome’s renderer with duplicate object properties
📝

内容提要

In this post, I'll exploit CVE-2024-3833, an object corruption bug in v8, the Javascript engine of Chrome, that allows remote code execution (RCE) in the renderer sandbox of Chrome by a single...

🏷️

标签

chrome
➡️

继续阅读

  1. OpenClaw安全实战系列三:利用网关劫持实现 OpenClaw控制端1-Click RCE (CVE-2026-25253)
    本文分析了OpenClaw控制端UI的关键逻辑漏洞CVE-2026-25253,CVSS评分为8.8。该漏洞允许攻击者通过诱导用户点击恶意链接,劫持Web...
  2. 联想Legion Go S成为RAMageddon的最新受害者
    联想的Legion Go S手持游戏机价格大幅上涨,SteamOS版本从829.99美元涨至1579.99美元,Windows版本涨至1679.99美元。...
  3. Exploring Petabytes of the Night Sky — Jupyter Notebooks at NOIRLab’s Astro Data Lab Science…
    Exploring Petabytes of the Night Sky — Jupyter Notebooks at NOIRLab’s Astro D...
  4. Anthropic Introduces Managed Agents to Simplify AI Agent Deployment
    Anthropic introduces Managed Agents on Claude, a managed execution layer for ...
  5. Slack Rebuilds Notification System, Reports 5X Increase in Settings Engagement
    Slack has rebuilt its notification system with a unified architecture that se...
  6. 苹果电视在七月迎来繁忙的科幻夏季,《Silo》第三季即将上线
    苹果电视的科幻剧《Silo》第三季将于7月3日回归,共10集,讲述地下城市居民的故事。新季将揭示早期的起源故事,主角朱丽叶在经历清洗后失忆,面临新威胁。该...
👤 个人中心
在公众号发送验证码完成验证