CVE-2023-3420

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Jun 26, 2023

Updated: Jan 31, 2024

CWE ID 843

Summary

CVE-2023-3420 is a type confusion vulnerability affecting Google Chrome versions prior to 114.0.5735.198. An attacker can exploit this issue by creating a specially crafted HTML page, potentially leading to heap corruption. This vulnerability, classified as high severity by Chromium, could allow an remote attacker to execute arbitrary code. The type confusion occurs in V8, Google Chrome's JavaScript engine, making it a significant threat for users browsing malicious websites.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/ryPgUy
https://www.cve.org/CVERecord?id=CVE-2023-3420
https://nvd.nist.gov/vuln/detail/CVE-2023-3420

Back to Vulnerability Database

CVE-2023-3420

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations