CVE-2023-5346

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Oct 5, 2023
Updated: Jan 31, 2024
CWE ID 843

Summary

CVE-2023-5346 denotes a type confusion vulnerability in Google Chrome's V8 engine, affecting versions prior to 117.0.5938.149. A remote attacker can potentially exploit this issue by crafting a malicious HTML page to induce heap corruption. This vulnerability, assigned a high severity level by Chromium, could lead to code injection or arbitrary code execution if successfully exploited.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share