CERT-MU Vulnerability Note VN-2023-08

Date of Issue: 14.09.2023

Severity Rating: High

Affected Products:

• Google Chrome 116.0

Description

Google Chrome could allow a remote attacker to execute arbitrary code on the system, caused by a use-after-free in Networks. By persuading a victim to visit a specially crafted Web site, an attacker could exploit this vulnerability to execute arbitrary code on the system or cause the application to crash.

Solution

Users are advised to apply updates to address the vulnerabilities. Before applying the patch, please visit the vendor website for more details:

• https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop.html

CVE Information

• CVE-2023-4763 CVSS:8.8
• CVE-2023-4762 CVSS:8.8
• CVE-2023-4761 CVSS:8.8

References

• https://nvd.nist.gov/vuln/detail/CVE-2023-4763
• https://cve.report/CVE-2023-4763
• https://nvd.nist.gov/vuln/detail/CVE-2023-4762
• https://cve.report/CVE-2023-4762
• https://nvd.nist.gov/vuln/detail/CVE-2023-4761

Report Cyber Incidents
Report cyber security incident on the Mauritian Cybercrime Online Reporting System (MAUCORS – http://maucors.govmu.org/)

Contact Information
Computer Emergency Response Team of Mauritius (CERT-MU)
Ministry of Information Technology, Communication and Innovation

Tel: (+230) 4602600
Hotline No: (+230) 800 2378
Gen. Info. : contact@cert.govmu.org
Incident: incident@cert.govmu.org
Website: http://cert-mu.govmu.org
MAUCORS: http://maucors.govmu.org