CVE-2023-5857

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Nov 1, 2023

Updated: Jan 31, 2024

Summary

CVE-2023-5857 is a medium severity vulnerability affecting Google Chrome versions prior to 119.0.6045.105. This issue stems from an inappropriate implementation in the Downloads feature, which could enable a remote attacker to potentially execute arbitrary code through a malicious file. The exact nature of the implementation error has not been disclosed, but the implications are significant as successful exploitation could lead to serious security compromises. Users are strongly encouraged to update their Chrome browsers to the latest version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tNgLhP
https://www.cve.org/CVERecord?id=CVE-2023-5857
https://nvd.nist.gov/vuln/detail/CVE-2023-5857

Back to Vulnerability Database

CVE-2023-5857

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations