CVE-2023-4350

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Aug 15, 2023
Updated: Jan 31, 2024

Summary

CVE-2023-4350 is a high-severity vulnerability affecting Google Chrome on Android versions prior to 116.0.5845.96. The issue lies in the Fullscreen feature, which an attacker could exploit with a specially crafted HTML page, potentially enabling them to spoof the contents of the Omnibox (URL bar). This could mislead users into entering sensitive information on fraudulent websites, posing a significant security risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share