CVE-2023-5853

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Nov 1, 2023

Updated: Jan 31, 2024

CWE ID 346

Summary

CVE-2023-5853 is a medium severity vulnerability affecting Google Chrome versions prior to 119.0.6045.105. An attacker could exploit this issue by crafting a malicious HTML page that obfuscates the security UI in the Chrome Downloads feature. This error in Chrome's security UI could potentially mislead users into believing they are interacting with a trustworthy download, putting them at risk of falling victim to phishing or malware attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tNfrLT
https://www.cve.org/CVERecord?id=CVE-2023-5853
https://nvd.nist.gov/vuln/detail/CVE-2023-5853

Back to Vulnerability Database

CVE-2023-5853

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations