CVE-2023-4863 – Qualys ThreatPROTECT

Google Chrome Zero-day Vulnerability Exploited in the Wild (CVE-2023-7024)

Posted by Diksha Ojha on December 21, 2023January 2, 2024

Google has released a patch to address a high-severity vulnerability in the Chrome browser. Tracked as CVE-2023-7024, the vulnerability is being exploited in the wild. CVE-2023-7024 is a heap-based buffer overflow vulnerability in the open-source WebRTC framework. Many other web browsers, such as Mozilla Firefox, Safari, and Microsoft Edge, also use the WebRTC framework to … Continue reading “Google Chrome Zero-day Vulnerability Exploited in the Wild (CVE-2023-7024)”

Google Chrome Zero-day Heap Overflow Vulnerability (CVE-2023-4863)

Posted by Abhishek Rautela on September 12, 2023September 14, 2023

Google has released security updates to address a zero-day vulnerability in the widely used web browser Chrome. Tracked as CVE-2023-4863, the CVE has been rated critical by Google. Google is aware of the active exploitation of the vulnerability. CVE-2023-4863 is a Heap Buffer Overflow vulnerability in WebP image format. The vulnerability may allow an attacker … Continue reading “Google Chrome Zero-day Heap Overflow Vulnerability (CVE-2023-4863)”