CVE-2023-5850

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Nov 1, 2023
Updated: Jan 31, 2024

Summary

CVE-2023-5850 is a medium severity vulnerability affecting Google Chrome versions prior to 119.0.6045.105. The issue lies in the incorrect security UI of the Downloads feature, which enabled a remote attacker to carry out domain spoofing attacks through crafted domain names. This vulnerability could potentially mislead users into trusting fraudulent websites and putting their data at risk. Users are advised to update their Chrome browsers to the latest version to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share