CVE-2023-5482

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Nov 1, 2023
Updated: Jan 31, 2024
CWE ID 345

Summary

CVE-2023-5482 is a high severity vulnerability affecting Google Chrome versions prior to 119.0.6045.105. This issue arises due to insufficient data validation in the USB functionality of the browser. A remote attacker can exploit this vulnerability by crafting a malicious HTML page, leading to out-of-bounds memory access. Such an attack could potentially result in arbitrary code execution or system instability. Users are advised to update their Chrome browsers to the latest version to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share