CVE-2023-4762

Summary

Type Confusion in V8 in Google Chrome prior to 116.0.5845.179 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)

Severity
High
Severity Score

8.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-ID

CWE-843

Vulnerability ID
CVE-2023-4762
Severity
High
Severity Score
8.8
Summary
Type Confusion in V8 in Google Chrome prior to 116.0.5845.179 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)
References
https://crbug.com/1473247 https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop.html https://www.debian.org/security/2023/dsa-5491 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/27NR3KG553CG6LGPMP6SHWEVHTYPL6RC/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T655QF7CQ3DYAMPFV7IECQYGDEUIVVT/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KUQ7CTX3W372X3UY56VVNAHCH6H2F4X3/ https://security.gentoo.org/glsa/202311-11 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4762 https://security.gentoo.org/glsa/202312-07 https://security.gentoo.org/glsa/202401-34
Mitigation and Patches
Exploits
https://github.com/zckevin/CVE-2023-4762 https://blog.google/threat-analysis-group/0-days-exploited-by-commercial-surveillance-vendor-in-egypt/ https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop.html https://github.com/buptsb/CVE-2023-4762 https://github.com/zckevin/CVE-2023-4762 https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Metasploit Payload
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CWE ID
CWE-843

See SecOps Solution
in action

Schedule Demo
Agentless security for your infrastructure and applications - to build faster, more securely and in a fraction of the operational cost of other solutions
hello@secopsolution.com
+569-231-213
Compare
Qualys Cloud AgentTenable NessusRapid7 InsightVM
Resources
CVECase StudieseBooksPolicy TemplatesBlogPricing
Company
About UsContactCareer
Try It
Patch AstraEPSS CalculatorContactFree ScanSchedule DemoLog In
© 2024  SecOps Solution, Inc.| Privacy Policy | Terms and Conditions .
Social Media :