CVSS 3.1 Score 4.3 of 10 (medium)


Published Sep 12, 2023
Updated: Jan 31, 2024


CVE-2023-4902 is a vulnerability that affects Google Chrome versions prior to 117.0.5938.62. It is caused by an inappropriate implementation in the input of Google Chrome, allowing a remote attacker to spoof security UI through a crafted HTML page. The vulnerability has a severity rating of medium and requires user interaction for exploitation. The impact on an organization includes low integrity and no confidentiality impact, with no availability impact. The vulnerability has a base score of 4.3 according to CVSS version 3.1, indicating a medium severity level. There are no changes to the scope of the vulnerability, and no analysis description is provided at this time.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-4902 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options