CVE-2023-3739

Summary

CVE-2023-3739 is a vulnerability that affects Chromad in Google Chrome on ChromeOS prior to version 115.0.5790.131. It is categorized as CWE-77, which refers to the improper neutralization of special elements used in a command (command injection). The vulnerability allows a remote attacker to execute arbitrary code through a crafted shell script. The severity of this vulnerability is rated as low, with a base score of 6.3 and an impact score of 3.4 out of 10. The exploitability score is 2.8, and the attack vector is through the network with user interaction required. The potential danger it poses to an organization includes the risk of unauthorized code execution and potential compromise of confidentiality and integrity of the affected system or network. To remediate this vulnerability, it is recommended to update Google Chrome to version 115.0.5790.131 or later. Note: The provided information does not include specific remediation instructions, but advises updating the affected software to address the vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.