Google Chrome Multiple Vulnerabilities

Release Date: 29 Nov 2023 5822 Views

RISK: Extremely High Risk

Extremely High Risk

TYPE: Clients - Browsers

TYPE: Browsers

Multiple vulnerabilities were identified in Google Chrome.  A remote attacker could exploit some of these vulnerabilities to trigger security restriction bypass, data manipulation, remote code execution and denial of service condition on the targeted system.

 

Note:

For CVE-2023-6345, Integer overflow in Skia (open-source 2D graphics library), the vulnerability could result in remote code execution. Google is aware of a report that this issue may have been exploited in the wild against versions of Chrome before 119.0.6045.199.

Impact

  • Remote Code Execution
  • Denial of Service
  • Security Restriction Bypass
  • Data Manipulation

System / Technologies affected

  • Google Chrome prior to 119.0.6045.199 (Linux)
  • Google Chrome prior to 119.0.6045.199 (Mac)
  • Google Chrome prior to 119.0.6045.199/.200 (Windows)

Solutions

Before installation of the software, please visit the software vendor web-site for more details.

Apply fixes issued by the vendor:

  • Update to version 119.0.6045.199 (Linux) or later
  • Update to version 119.0.6045.199 (Mac) or later
  • Update to version 119.0.6045.199/.200 (Windows) or later

Vulnerability Identifier

Source

Related Link

Related Tags

ChromeRemote Code ExecutionDenial of ServiceData ManipulationSecurity Restriction BypassExploit In The Wild

Share with

Previous

NetApp Denial of Service Vulnerability

27 Nov 2023 4250 Views

Next

Ubuntu Linux Kernel Multiple Vulnerabilities

2 Nov 2023 6635 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY