Skip to main content

Google Chrome Multiple Vulnerabilities

Release Date: 29 Nov 2023 4527 Views

RISK: Extremely High Risk

TYPE: Clients - Browsers

TYPE: Browsers

Multiple vulnerabilities were identified in Google Chrome.  A remote attacker could exploit some of these vulnerabilities to trigger security restriction bypass, data manipulation, remote code execution and denial of service condition on the targeted system.

 

Note:

For CVE-2023-6345, Integer overflow in Skia (open-source 2D graphics library), the vulnerability could result in remote code execution. Google is aware of a report that this issue may have been exploited in the wild against versions of Chrome before 119.0.6045.199.


Impact

  • Remote Code Execution
  • Denial of Service
  • Security Restriction Bypass
  • Data Manipulation

System / Technologies affected

  • Google Chrome prior to 119.0.6045.199 (Linux)
  • Google Chrome prior to 119.0.6045.199 (Mac)
  • Google Chrome prior to 119.0.6045.199/.200 (Windows)

Solutions

Before installation of the software, please visit the software vendor web-site for more details.

Apply fixes issued by the vendor:

  • Update to version 119.0.6045.199 (Linux) or later
  • Update to version 119.0.6045.199 (Mac) or later
  • Update to version 119.0.6045.199/.200 (Windows) or later

Vulnerability Identifier


Source


Related Link