CVE-2023-6347

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Nov 29, 2023

Updated: Aug 1, 2024

CWE ID 416

Summary

CVE-2023-6347 is a high-severity vulnerability affecting Google Chrome versions prior to 119.0.6045.199. The issue involves a use-after-free condition in Mojo, a Google Chrome component. A remote attacker can potentially exploit this vulnerability by crafting a malicious HTML page that leads to heap corruption. Successful exploitation could result in arbitrary code execution, allowing the attacker to take control of an affected system. Users are strongly advised to update their browsers as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tlyLAT
https://www.cve.org/CVERecord?id=CVE-2023-6347
https://nvd.nist.gov/vuln/detail/CVE-2023-6347

Back to Vulnerability Database

CVE-2023-6347

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations