CVE-2023-5472

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Oct 25, 2023
Updated: Jan 31, 2024
CWE ID 416

Summary

CVE-2023-5472 is a vulnerability found in Google Chrome prior to version 118.0.5993.117. The vulnerability, categorized as CWE-416 (Use After Free), allows a remote attacker to potentially exploit heap corruption through a crafted HTML page, posing a high risk to the integrity and confidentiality of affected organizations. The vulnerability has a base severity rating of high, with a base score of 8.8 according to NVD@NIST.gov. It requires user interaction and has an attack vector of network, but does not require any privileges to be exploited. The exploitability score is 2.8 out of 10, indicating that it is moderately easy to exploit. The impact score is 5.9 out of 10, highlighting the potential consequences of this vulnerability.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-5472 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options