CVE-2023-5485
CVSS 3.1 Score 4.3 of 10 (medium)
Details
Published Oct 11, 2023
Updated: Jan 31, 2024
Summary
CVE-2023-5485 is a vulnerability affecting Google Chrome versions prior to 118.0.5993.70. This issue arises from an improper implementation in Autofill, enabling a remote attacker to bypass autofill restrictions using a specially crafted HTML page. Though classified as a low severity threat by Chromium security, it allows potentially sensitive data to be exposed, making it a concern for users. This vulnerability underscores the importance of keeping web browsers updated to ensure optimal security.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share