ChromeOS Multiple Vulnerabilities

Release Date: 10 Oct 2023 3498 Views

RISK: Extremely High Risk

Extremely High Risk

TYPE: Operating Systems - Others OS

TYPE: Others OS

Multiple vulnerabilities were identified in ChromeOS. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege, remote code execution and sensitive information disclosure on the targeted system.

 

Note:

CVE-2023-5217: Heap buffer overflow in vp8 encoding in libvpx. Google is aware that an exploit for CVE-2023-5217 exists in the wild.

Impact

  • Remote Code Execution
  • Elevation of Privilege
  • Denial of Service
  • Information Disclosure

System / Technologies affected

  • Version prior to 114.0.5735.337 (Platform Version: 15437.74.0)

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Apply fixes issued by the vendor. For detail, please refer to the link below:

Vulnerability Identifier

Source

Related Link

Related Tags

ChromeRemote Code ExecutionDenial of ServiceElevation of PrivilegeInformation DisclosureExploit In The Wild

Share with

Previous

Microsoft Edge Remote Code Execution Vulnerability

5 Oct 2023 3006 Views

Next

Microsoft Monthly Security Update (October 2023)

11 Oct 2023 3845 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY