CVE-2023-5217

Vulnerability updated 7 months ago (2024-05-04T20:39:45.507Z)

Download STIX

Preview STIX

CVE-2023-5217 is a high-severity zero-day vulnerability identified within the VP8 encoding of the open-source libvpx video codec library utilized by Google Chrome. The flaw, a heap buffer overflow, was capable of causing application crashes or allowing arbitrary code execution, thereby making it a significant security risk. Reports have indicated that this vulnerability was exploited in the wild, with instances of a commercial vendor leveraging the flaw to deliver the Predator spyware tool on affected Android devices. The vulnerability first came into the limelight in September when Google disclosed the existence of the bug in one of Chrome's software libraries. This disclosure drew attention to the potential risks associated with the flaw, particularly as it was linked to multiple spying exploits. The exploitation of CVE-2023-5217 marked the third instance of a zero-day vulnerability tied to such activities within that month alone. However, recent updates from NSFOCUS CERT, a global network and cybersecurity leader, confirm that Google has officially fixed the CVE-2023-5217 exploit. This fix mitigates the risk posed by the heap buffer overflow in the VP8 encoding of the libvpx video codec library. Despite this remediation, organizations are advised to remain vigilant given the past exploitation of this vulnerability in the wild.

Description last updated: 2024-05-04T16:25:30.191Z

What's your take? (Question 1 of 4)

Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.

Aliases We are not currently tracking any aliases

Miscellaneous Associations

Other elements of context that could aid in the identification of relevance

Google

Chrome

Vulnerability

Analyst Notes & Discussion

Be the first to leave your mark here! Log in to share your views and vote.

Associated Malware

To see the evidence that has resulted in these malware associations, create a free account

Alias Description	Association Type	Votes
The Predator Spyware Malware is associated with CVE-2023-5217. Predator Spyware is a malicious software known for its extensive data-stealing and surveillance capabilities. It has been designed to exploit and damage devices, often infiltrating systems via suspicious downloads, emails, or websites without the user's knowledge. Once inside, it can steal personal	Unspecified	2
The Predator Malware is associated with CVE-2023-5217. Predator is a highly invasive malware known for its extensive data-stealing and surveillance capabilities. The malicious software, developed by the Intellexa Consortium, a complex international network of decentralized companies, can infect systems through suspicious downloads, emails, or websites a	Unspecified	2

Source Document References

Information about the CVE-2023-5217 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more

Source Link	CreatedAt	Title
Securityaffairs	6 months ago	Experts warn of a flaw in Fluent Bit utility that is used by major cloud platforms and firms
CERT-EU	9 months ago	Apple Fixes Actively Exploited Zero-Days in iOS (CVE-2024-23225)
DARKReading	10 months ago	Google Chrome Zero-Day Bug Under Attack, Allows Code Injection
CERT-EU	10 months ago	Google fixes first actively exploited Chrome zero-day of 2024
CERT-EU	a year ago	Alert: New Chrome Zero-Day Vulnerability Being Exploited
CERT-EU	a year ago	Google fixes 8th Chrome zero-day exploited in attacks this year
Securityaffairs	a year ago	Google addressed a new actively exploited Chrome zero-day
CERT-EU	a year ago	Apple emergency updates fix recent zero-days on older iPhones
Securityaffairs	a year ago	CISA adds ownCloud and Google Chrome bugs to its Known Exploited Vulnerabilities catalog
Securityaffairs	a year ago	Apple addressed 2 new iOS zero-day vulnerabilities
Securelist	a year ago	PC malware statistics, Q3 2023
Securityaffairs	a year ago	Google addressed a new Chrome Zero-Day vulnerability
DARKReading	a year ago	Google Patches Another Chrome Zero-Day as Browser Attacks Mount
CERT-EU	a year ago	Google Chrome emergency update fixes 6th zero-day exploited in 2023
Krebs on Security	a year ago	Patch Tuesday, October 2023 Edition
CERT-EU	a year ago	Red Hat Enterprise Linux 8.6 Extended Update Support update for firefox
CERT-EU	a year ago	Red Hat Enterprise Linux 9.0 Extended Update Support update for thunderbird
CERT-EU	a year ago	Apple Released Security Update to Fix Vulnerability Affecting Multiple Apple Products – Global Security Mag Online
CERT-EU	a year ago	Weekly Vulnerability Recap – October 16, 2023 – Apple & Linux Vulnerabilities
CERT-EU	a year ago	Microsoft addresses three zero-days for October’s Patch Tuesday