CVE-2023-5217
CVSS 3.1 Score 8.8 of 10 (high)
Details
Summary
CVE-2023-5217 is a high-severity vulnerability that affects Google Chrome prior to version 117.0.5938.132 and libvpx 1.13.1. The vulnerability is a heap buffer overflow in vp8 encoding in libvpx, which could allow a remote attacker to potentially exploit heap corruption through a crafted HTML page. The vulnerability has a CVSSv3 base score of 8.8, indicating a high level of danger to organizations. To remediate this vulnerability, users should update their Google Chrome browser to version 117.0.5938.132 or later and ensure they are using the updated version of libvpx (1.13.1).
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Advisories, Assessments, and Mitigations
Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future
- Gain complete coverage of your cyber, third party, and physical attack surface
- Proactively mitigate threats before they turn into costly attacks
- Make fast, effective, data-driven decisions