CVE-2023-4427

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Aug 23, 2023

Updated: Jan 31, 2024

CWE ID 770

Summary

CVE-2023-4427 represents a high-severity vulnerability in Google Chrome's V8 engine, prior to version 116.0.5845.110. An attacker could exploit this out-of-bounds memory access issue by crafting a malicious HTML page. The result is an out-of-bounds memory read, giving the attacker potential access to sensitive information. This vulnerability poses a significant risk and should be addressed with the latest Chrome update to mitigate potential attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Python Pillow
Fedora Operating System

Affected Vendors

Fedora Project
Python Software Foundation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/s0SADu
https://www.cve.org/CVERecord?id=CVE-2023-4427
https://nvd.nist.gov/vuln/detail/CVE-2023-4427

Back to Vulnerability Database