CVE-2023-3740

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Aug 1, 2023

Updated: Jan 31, 2024

Summary

CVE-2023-3740 is a newly disclosed vulnerability affecting Google Chrome versions prior to 115.0.5790.98. The issue lies in the theme functionality, where insufficient validation of untrusted input allows a remote attacker to potentially serve malicious content to users via a carefully crafted background URL. This vulnerability, rated as low severity by Chromium security team, could lead to security risks if exploited. Users are advised to update their browsers to the latest version to mitigate this issue.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sB3cp2
https://www.cve.org/CVERecord?id=CVE-2023-3740
https://nvd.nist.gov/vuln/detail/CVE-2023-3740

Back to Vulnerability Database

CVE-2023-3740

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations