mickmick.net

Google Chrome Multiple Vulnerabilities

Release Date: 11 Oct 2023

RISK: Medium Risk

TYPE: Clients - Browsers

Multiple vulnerabilities were identified in Google Chrome.  A remote attacker could exploit some of these vulnerabilities to trigger information disclosure, remote code execution and denial of service condition on the targeted system.

---

Impact

• Remote Code Execution
• Denial of Service
• Information Disclosure

---

System / Technologies affected

• Google Chrome prior to 118.0.5993.70 (Linux)
• Google Chrome prior to 118.0.5993.70 (Mac)
• Google Chrome prior to 118.0.5993.70/.71 (Windows)

---

Solutions

Before installation of the software, please visit the software vendor web-site for more details.

Apply fixes issued by the vendor:

• Update to version 118.0.5993.70 (Linux) or later
• Update to version 118.0.5993.70 (Mac) or later
• Update to version 118.0.5993.70/.71 (Windows) or later

---

Vulnerability Identifier

• CVE-2023-5218
• CVE-2023-5473
• CVE-2023-5474
• CVE-2023-5475
• CVE-2023-5476
• CVE-2023-5477
• CVE-2023-5478
• CVE-2023-5479
• CVE-2023-5481
• CVE-2023-5483
• CVE-2023-5484
• CVE-2023-5485
• CVE-2023-5486
• CVE-2023-5487

---

Source

• Google Chrome

---

Related Link

• https://chromereleases.googleblog.com/2023/10/stable-channel-update-for-desktop_10.html