CVE-2024-10668 | Google Quickshare Operational Intel

Executive Risk Summary

"A vulnerability in Google Quickshare allows an attacker to bypass authentication and upload unknown file types to a victim's system. This is due to a flaw in the deletion logic of the Payload Transfer frame, which can be exploited by sending two frames with the same payload ID."

Operational Audit Arsenal

Target Type Executable

Target Asset Quick Share

Standard Path %ProgramFiles%\Google\Quick Share

PowerShell

# 🛠️ Senior Engineer Universal Audit
# Target: Quick Share (Executable)
$Targets = 'Quick Share'
$SearchPaths = @("$env:windir\System32", "$env:ProgramFiles", "${env:ProgramFiles(x86)}")

Get-ChildItem -Path $SearchPaths -Include $Targets -Recurse -ErrorAction SilentlyContinue | 
Select-Object FullName, @{Name="Version";Expression={$_.VersionInfo.ProductVersion}}

Patch Impact Forecast

Reboot Required Unlikely

Quick Share service

Internal Work Notes

CVE-2024-10668: Auth bypass vulnerability in Google Quickshare, recommend upgrading to Quick Share Windows v1.0.2002.2 or later

Technical Intelligence & Operational Utilities • Delivered Weekly

Intelligence Sources

Official Advisoryhttps://github.com/google/nearby/pull/2892

Related Google Threats

CVE-2026-7343 CVSS 9.8

Google Chrome - Views

CVE-2025-4609 CVSS 9.6

Google Chrome - Mojo

CVE-2025-4613 CVSS 8.8

Google Web Designer

Data compiled from NVD, MSRC, and CISA KEV Catalog. Intelligence synthesized via AI. Scripts provided for diagnostic purposes under MIT License.