CVE-2023-3727

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Aug 1, 2023

Updated: Jan 31, 2024

CWE ID 89

Summary

CVE-2023-3727 is a high severity vulnerability affecting Google Chrome versions prior to 115.0.5790.98. This issue involves a use-after-free condition in the WebRTC component, which can be exploited by a remote attacker. By crafting a malicious HTML page, an adversary could potentially corrupt the heap memory, leading to unintended program behavior or crashes. Successful exploitation of this vulnerability could result in code execution or denial-of-service attacks, posing a significant threat to users.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Piwigo

Affected Vendors

Piwigo

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/r1MWQF
https://www.cve.org/CVERecord?id=CVE-2023-3727
https://nvd.nist.gov/vuln/detail/CVE-2023-3727

Back to Vulnerability Database