CVE-2023-3739

CVSS 3.1 Score 6.3 of 10 (medium)

Details

Published Aug 1, 2023
Updated: Aug 15, 2023
CWE ID 77

Summary

CVE-2023-3739 is a vulnerability that affects Chromad in Google Chrome on ChromeOS prior to version 115.0.5790.131. It is categorized as CWE-77, which refers to the improper neutralization of special elements used in a command (command injection). The vulnerability allows a remote attacker to execute arbitrary code through a crafted shell script. The severity of this vulnerability is rated as low, with a base score of 6.3 and an impact score of 3.4 out of 10. The exploitability score is 2.8, and the attack vector is through the network with user interaction required. The potential danger it poses to an organization includes the risk of unauthorized code execution and potential compromise of confidentiality and integrity of the affected system or network. To remediate this vulnerability, it is recommended to update Google Chrome to version 115.0.5790.131 or later. Note: The provided information does not include specific remediation instructions, but advises updating the affected software to address the vulnerability.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-3739 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options