CVE-2023-4860

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 115.0.5790.98

Description The issue is related to an inappropriate implementation in the Skia graphics library of Google Chrome, which can be exploited by a remote attacker to potentially perform a sandbox escape. This can be achieved via a crafted HTML page, assuming the renderer process has been compromised.

Recommendations For versions prior to 115.0.5790.98, update to version 115.0.5790.98 or later to resolve the issue. As a temporary workaround, consider restricting access to potentially vulnerable HTML pages until the update is applied.