Skip to main content

Google Chrome Multiple Vulnerabilities

Release Date: 19 Apr 2023 7732 Views

RISK: Extremely High Risk

TYPE: Clients - Browsers

TYPE: Browsers

Multiple vulnerabilities were identified in Google Chrome. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, remote code execution and sensitive information disclosure on the targeted system.

 

Note:

CVE-2023-2136 is being exploited in the wild. The vulnerability is caused due to a Integer overflow in Skia.


Impact

  • Remote Code Execution
  • Denial of Service
  • Information Disclosure

System / Technologies affected

  • Google Chrome prior to 112.0.5615.137 (Mac)
  • Google Chrome prior to 112.0.5615.137/138 (Windows)

Solutions

Before installation of the software, please visit the software vendor web-site for more details.

Apply fixes issued by the vendor:

  • Update to version 112.0.5615.137 (Mac) or later
  • Update to version 112.0.5615.137/138 (Windows) or later

Vulnerability Identifier


Source


Related Link