Skip to main content

Google Chrome Multiple Vulnerabilities

Release Date: 28 Sep 2023 5203 Views

RISK: Extremely High Risk

TYPE: Clients - Browsers

TYPE: Browsers

Multiple vulnerabilities were identified in Google Chrome.  A remote attacker could exploit some of these vulnerabilities to trigger elevation of privilege, remote code execution and denial of service condition on the targeted system.
 

Note:

For CVE-2023-5217, Heap buffer overflow in vp8 encoding in libvpx. Google is aware of a report that this issue may have been actively exploited against versions of Chrome before 117.0.5938.132.


Impact

  • Remote Code Execution
  • Denial of Service
  • Security Restriction Bypass

System / Technologies affected

  • Google Chrome prior to 117.0.5938.132 (Linux)
  • Google Chrome prior to 117.0.5938.132 (Mac)
  • Google Chrome prior to 117.0.5938.132 (Windows)

Solutions

Before installation of the software, please visit the software vendor web-site for more details.

Apply fixes issued by the vendor:

  • Update to version 117.0.5938.132 (Linux) or later
  • Update to version 117.0.5938.132 (Mac) or later
  • Update to version 117.0.5938.132 (Windows) or later

Vulnerability Identifier


Source


Related Link