CVE-2023-4762

Vulnerability updated a year ago (2024-11-29T13:30:44.181Z)

Download STIX

Preview STIX

CVE-2023-4762 is a software vulnerability, specifically a remote code execution flaw in the Chrome web browser. This vulnerability was identified by researchers from Google's Threat Analysis Group (TAG) in September 2023, around the same time Apple disclosed its own zero-day bugs. The vulnerability was found to be exploited as part of an exploit chain developed by a commercial software company named Intellexa. Intellexa was discovered to have been using this exploit chain, which included the Chrome zero-day CVE-2023-4762, to install a spying tool called Predator on Android devices. The delivery of Predator was achieved through two methods: the AitM injection and via one-time links sent directly to the target device. These activities were detected and reported by Google TAG, pointing out the abuse of the Chrome zero-day vulnerability. The exploitation of CVE-2023-4762 by Intellexa was not isolated to general Android devices but was specifically noted in Egypt. Google TAG identified Intellexa as a surveillance vendor, abusing the Chrome zero-day vulnerability to drop the Predator spying tool on targeted Android devices within the region. This revelation underscores the potential severity and global security implications of such software vulnerabilities.

Description last updated: 2024-05-04T17:16:19.631Z

What's your take? (Question 1 of 5)

Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.

Aliases We are not currently tracking any aliases

Miscellaneous Associations

Other elements of context that could aid in the identification of relevance

Exploit

Chrome

Android

Google

Chromium

Analyst Notes & Discussion

Be the first to leave your mark here! Log in to share your views and vote.

Associated Malware

To see the evidence that has resulted in these malware associations, create a free account

Alias Description	Association Type	Votes
The Predator Malware is associated with CVE-2023-4762. Predator is a highly invasive malware known for its extensive data-stealing and surveillance capabilities. The malicious software, developed by the Intellexa Consortium, a complex international network of decentralized companies, can infect systems through suspicious downloads, emails, or websites a	Unspecified	2

Source Document References

Information about the CVE-2023-4762 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more

Source Link	CreatedAt	Title
CISA	2 years ago	CISA Adds One Known Exploited Vulnerability to Catalog \| CISA
DARKReading	2 years ago	Days After Google, Apple Reveals Exploited Zero-Day in Browser Engine
CERT-EU	2 years ago	Google fixes first actively exploited Chrome zero-day of 2024
CERT-EU	2 years ago	Alert: New Chrome Zero-Day Vulnerability Being Exploited
CERT-EU	2 years ago	Google fixes 8th Chrome zero-day exploited in attacks this year
Securityaffairs	2 years ago	Google addressed a new actively exploited Chrome zero-day
Securelist	2 years ago	PC malware statistics, Q3 2023
CERT-EU	2 years ago	Recently patched Apple, Chrome zero-days exploited in spyware attacks
CERT-EU	2 years ago	Tripwire Patch Priority Index for September 2023
CERT-EU	2 years ago	Spyware Vendor Targets Egyptian Orgs With Rare iOS Exploit Chain
DARKReading	2 years ago	Chrome Flags Third Zero-Day This Month That's Tied to Spying Exploits
CERT-EU	2 years ago	Google Rushes to Patch New Zero-Day Exploited by Spyware Vendor
CERT-EU	2 years ago	More iOS Zero Days, More Mercenary Spyware — This Time: Cytrox Predator
CERT-EU	2 years ago	New Apple Zero-Days Exploited to Target Egyptian ex-MP with Predator Spyware
CERT-EU	2 years ago	Predator Spyware Delivered to iOS, Android Devices via Zero-Days, MitM Attacks
CERT-EU	2 years ago	Predator exploit patched in iPhones, iPads
CERT-EU	2 years ago	New Apple Zero-Days Exploited to Deliver Predator Spyware
CERT-EU	2 years ago	Konkurent Pegasusa w akcji. Wykryto właśnie ataki z wykorzystaniem SMSów. W użyciu podatności 0day na iPhone / Androida. Predator.
CERT-EU	2 years ago	2024 Election Shocker!: Government-Backed Hackers Hijacked Mobile Networks to Plant Predator Spyware on Politician's iPhone \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #hacker \| National Cyber Security Consulting
CERT-EU	2 years ago	New Apple Zero-Days Exploited to Target Egyptian ex-MP with Predator Spyware