CVE-2023-4350
CVSS 3.1 Score 6.5 of 10 (medium)
Details
Published Aug 15, 2023
Updated: Jan 31, 2024
Summary
CVE-2023-4350 is a high-severity vulnerability affecting Google Chrome on Android versions prior to 116.0.5845.96. The issue lies in the Fullscreen feature, which an attacker could exploit with a specially crafted HTML page, potentially enabling them to spoof the contents of the Omnibox (URL bar). This could mislead users into entering sensitive information on fraudulent websites, posing a significant security risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share