CVE-2023-2311

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Jul 29, 2023

Updated: Aug 10, 2023

Summary

CVE-2023-2311 is a medium severity vulnerability in Google Chrome's File System API, affecting versions prior to 112.0.5615.49. This issue allows remote attackers to bypass filesystem restrictions through a crafted HTML page. The insufficient policy enforcement in Chrome's File System API enables the attacker to gain unauthorized access to protected files or directories. This vulnerability poses a potential risk to user data and privacy. Users are advised to update their Chrome browsers to the latest version to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sJpdN8
https://www.cve.org/CVERecord?id=CVE-2023-2311
https://nvd.nist.gov/vuln/detail/CVE-2023-2311

Back to Vulnerability Database

CVE-2023-2311

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations