CVE-2023-3742

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Dec 20, 2023

Updated: Jan 4, 2024

CWE ID 787

Summary

CVE-2023-3742 is a high-severity vulnerability affecting Google Chrome on ChromeOS prior to version 114.0.5735.90. This issue stems from insufficient policy enforcement in Android Debug Bridge (ADB), enabling a local attacker with physical access to the device to bypass device policy restrictions. By exploiting this vulnerability, malicious actors can circumvent security measures and gain unauthorized access to sensitive information or install unapproved applications. This risk underscores the importance of keeping ChromeOS devices updated with the latest security patches to protect against such attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/r45gEN
https://www.cve.org/CVERecord?id=CVE-2023-3742
https://nvd.nist.gov/vuln/detail/CVE-2023-3742

Back to Vulnerability Database

CVE-2023-3742

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations