PT-2023-3752 · Google · Google Chrome

Published

2023-07-03

Updated

2023-07-29

CVE-2023-3497

CVSS v2.0

4.9

Medium

Vector

AV:L/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Google Chrome on Chrome OS versions prior to 114.0.5735.90

Description The issue is related to an out of bounds read in the Google Security Processor firmware, which can be exploited by a local attacker to perform a denial of service via physical access to the device. This can lead to a disruption in service.

Recommendations For Google Chrome on Chrome OS versions prior to 114.0.5735.90, update to version 114.0.5735.90 or later to resolve the issue.

Fix

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

BDU:2023-04041

CVE-2023-3497

Affected Products

Google Chrome

PT-2023-3752 · Google · Google Chrome

CVE-2023-3497

Weakness Enumeration

Related Identifiers

Affected Products

References · 7