CVE-2024-8909 Chromium Vulnerability: Impact, Fixes, and Deployment Strategies

Video: https://youtu.be/jTwo4jxDl10?si=JtI3p1YTIAzxd4dM

CVE Addressed:

• CVE-2024-8904: Type Confusion in V8

• CVE-2024-8905: Inappropriate implementation in V8

• CVE-2024-8906: Incorrect security UI in Downloads

• CVE-2024-8907: Insufficient data validation in Omnibox

• CVE-2024-8908: Inappropriate implementation in Autofill

• CVE-2024-8909: Inappropriate implementation in UI

  
  

Google Chrome: 129.0.6668.58 Released on : September 17, 2024

Microsoft Edge: 129.0.6668.58/.59 Released on : September 19, 2024

CVE-2024-8909 Chromium vulnerability: In the ever-changing landscape of cybersecurity, new vulnerabilities emerge daily, posing significant risks to organizations worldwide. The recently disclosed CVE-2024-8909 highlights the urgency of addressing security flaws in popular Chromium-based browsers such as Google Chrome, Microsoft Edge and others.

This vulnerability, caused by inappropriate implementation in the UI components, can expose systems to unauthorized access, phishing, and even arbitrary code execution. In this comprehensive guide, we’ll break down the vulnerability, its impact, and actionable steps to deploy fixes across your organization using tools like

• Microsoft Intune

• SCCM

• NinjaOne

• Datto RMM

• ConnectWise RMM

• Pulseway

• MSP360 RMM.

What is CVE-2024-8909 Chromium vulnerability?

CVE-2024-8909 is a critical vulnerability found in the UI implementation of Chromium impacting both individual users and enterprises relying on Chromium-based browsers. This flaw arises from improper handling of UI operations, allowing attackers to manipulate browser behaviors and potentially compromise system security.

Key Details:

• CVE ID: CVE-2024-8909

• Severity: High

• Attack Vector: Remote, via manipulated UI components

• Disclosed By: [Researcher/Organization]

Affected Systems:

• Google Chrome: Versions prior to 129.0.6668.58

• Microsoft Edge: Versions prior to 129.0.6668.58

• Other Chromium-based browsers with UI dependencies

Root Cause:

The vulnerability stems from improper validation and processing of UI inputs, enabling attackers to manipulate user sessions or execute arbitrary code.

Impact of CVE-2024-8909

Unpatched systems are vulnerable to exploitation, which may lead to:

1. User Data Breach: Exposure of sensitive session data like cookies and credentials.

2. Arbitrary Code Execution: Attackers may execute malicious code within the browser context.

3. Phishing Enhancement: Sophisticated phishing attacks through tampered browser interfaces.

This is particularly concerning for industries such as finance, healthcare and government where data integrity and privacy are critical.

Solution: Vendor Patch and Updates

Steps to Mitigate CVE-2024-8909:

1. Update to the Latest Browser Version:

   • Google Chrome: Version 129.0.6668.58 or later (Google Advisory).

   • Microsoft Edge: Version 129.0.6668.58 or later (Microsoft Advisory).

2. For Custom Chromium Builds:

   • Integrate the latest Chromium updates into your build to ensure protection.

Manual Mitigation (Temporary Fixes):

• Disable features prone to exploitation (if applicable).

• Restrict untrusted scripts and extensions.

Silent Installation and Deployment Across Tools

Here’s how to deploy the necessary patches using Microsoft Intune, SCCM and other leading RMM platforms.

Deployment via Microsoft Intune

Silent Installation Command:

msiexec /i "ChromeUpdate.msi" /quiet /norestart

Normal Installation Command:

msiexec /i "ChromeUpdate.msi"

Steps:

1. Upload the .msi installer to Microsoft Endpoint Manager (Intune).

2. Assign the update to affected device groups.

3. Configure the deployment as Required with the silent command.

4. Monitor progress in the Deployment Status dashboard.

Deployment via SCCM

Silent Installation Command:

msiexec /update "EdgeUpdate.msi" /quiet /norestart

Steps:

1. Import the .msi update package into SCCM’s Software Updates.

2. Assign it to collections of affected devices.

3. Schedule deployment and monitor success.

Deployment via NinjaOne

Silent Installation Command:

msiexec /i "ChromeUpdate.msi" /quiet /norestart

Steps:

1. Upload the .msi file under Software Deployment.

2. Configure the deployment command.

3. Assign target devices and schedule deployment.

Deployment via Datto RMM

Silent Installation Command:

msiexec /i "ChromeUpdate.msi" /quiet /norestart

Steps:

1. Add the .msi package to Datto RMM Deployment.

2. Use the silent install command in the configuration.

3. Assign devices and initiate the update.

Deployment via ConnectWise RMM

Silent Installation Command:

msiexec /i "ChromeUpdate.msi" /quiet /norestart

Steps:

1. Upload the update package to ConnectWise Automate.

2. Assign devices or groups.

3. Deploy and monitor progress.

Deployment via Pulseway

Silent Installation Command:

msiexec /i "ChromeUpdate.msi" /quiet /norestart

Steps:

1. Upload the .msi to Patch Management.

2. Set the command for silent install.

3. Assign devices and track progress.

Deployment via MSP360 RMM

Silent Installation Command:

msiexec /i "ChromeUpdate.msi" /quiet /norestart

Steps:

1. Navigate to Manage Software in MSP360.

2. Add the .msi and configure silent installation.

3. Deploy to assigned systems.

How Patching Improves Security Posture

1. Prevents Exploits: Mitigates risks of phishing and unauthorized access.

2. Strengthens Browser Security: Aligns with compliance standards like GDPR and HIPAA.

3. Supports Zero Trust: Reduces attack surface and fortifies endpoint defenses.