Google Chrome Multiple Vulnerabilities

Release Date: 28 Sep 2023 4112 Views

RISK: Extremely High Risk

Extremely High Risk

TYPE: Clients - Browsers

TYPE: Browsers

Multiple vulnerabilities were identified in Google Chrome.  A remote attacker could exploit some of these vulnerabilities to trigger elevation of privilege, remote code execution and denial of service condition on the targeted system.
 

Note:

For CVE-2023-5217, Heap buffer overflow in vp8 encoding in libvpx. Google is aware of a report that this issue may have been actively exploited against versions of Chrome before 117.0.5938.132.

Impact

  • Remote Code Execution
  • Denial of Service
  • Security Restriction Bypass

System / Technologies affected

  • Google Chrome prior to 117.0.5938.132 (Linux)
  • Google Chrome prior to 117.0.5938.132 (Mac)
  • Google Chrome prior to 117.0.5938.132 (Windows)

Solutions

Before installation of the software, please visit the software vendor web-site for more details.

Apply fixes issued by the vendor:

  • Update to version 117.0.5938.132 (Linux) or later
  • Update to version 117.0.5938.132 (Mac) or later
  • Update to version 117.0.5938.132 (Windows) or later

Vulnerability Identifier

Source

Related Link

Related Tags

ChromeRemote Code ExecutionDenial of Service

Share with

Previous

Mozilla Products Multiple Vulnerabilities

28 Sep 2023 3278 Views

Next

GitLab Multiple Vulnerabilities

29 Sep 2023 2855 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY