PT-2023-3752 · Google · Google Chrome

Publicado

2023-07-03

Atualizado

2023-07-29

CVE-2023-3497

CVSS v2.0

4.9

Média

Vetor

AV:L/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Google Chrome on Chrome OS versions prior to 114.0.5735.90

Description The issue is related to an out of bounds read in the Google Security Processor firmware, which can be exploited by a local attacker to perform a denial of service via physical access to the device. This can lead to a disruption in service.

Recommendations For Google Chrome on Chrome OS versions prior to 114.0.5735.90, update to version 114.0.5735.90 or later to resolve the issue.

Correção

Out of bounds Read

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-125

Identificadores relacionados

BDU:2023-04041

CVE-2023-3497

Produtos afetados

Google Chrome

PT-2023-3752 · Google · Google Chrome

CVE-2023-3497

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 7