CVE-2023-5217

Vulnerability updated a month ago (2024-11-29T13:44:14.172Z)
Download STIX
Preview STIX
CVE-2023-5217 is a high-severity zero-day vulnerability identified within the VP8 encoding of the open-source libvpx video codec library utilized by Google Chrome. The flaw, a heap buffer overflow, was capable of causing application crashes or allowing arbitrary code execution, thereby making it a significant security risk. Reports have indicated that this vulnerability was exploited in the wild, with instances of a commercial vendor leveraging the flaw to deliver the Predator spyware tool on affected Android devices. The vulnerability first came into the limelight in September when Google disclosed the existence of the bug in one of Chrome's software libraries. This disclosure drew attention to the potential risks associated with the flaw, particularly as it was linked to multiple spying exploits. The exploitation of CVE-2023-5217 marked the third instance of a zero-day vulnerability tied to such activities within that month alone. However, recent updates from NSFOCUS CERT, a global network and cybersecurity leader, confirm that Google has officially fixed the CVE-2023-5217 exploit. This fix mitigates the risk posed by the heap buffer overflow in the VP8 encoding of the libvpx video codec library. Despite this remediation, organizations are advised to remain vigilant given the past exploitation of this vulnerability in the wild.
Description last updated: 2024-05-04T16:25:30.191Z
What's your take? (Question 1 of 4)
Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.
Aliases We are not currently tracking any aliases
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Google
Chrome
Vulnerability
Analyst Notes & Discussion
Be the first to leave your mark here! Log in to share your views and vote.
Associated Malware
To see the evidence that has resulted in these malware associations, create a free account
Alias DescriptionAssociation TypeVotes
The Predator Spyware Malware is associated with CVE-2023-5217. Predator Spyware is a malicious software known for its extensive data-stealing and surveillance capabilities. It has been designed to exploit and damage devices, often infiltrating systems via suspicious downloads, emails, or websites without the user's knowledge. Once inside, it can steal personal Unspecified
2
The Predator Malware is associated with CVE-2023-5217. Predator is a highly invasive malware known for its extensive data-stealing and surveillance capabilities. The malicious software, developed by the Intellexa Consortium, a complex international network of decentralized companies, can infect systems through suspicious downloads, emails, or websites aUnspecified
2
Source Document References
Information about the CVE-2023-5217 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
PreviewSource LinkCreatedAtTitle
Securityaffairs
7 months ago
CERT-EU
10 months ago
DARKReading
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
Securityaffairs
a year ago
CERT-EU
a year ago
Securityaffairs
a year ago
Securityaffairs
a year ago
Securelist
a year ago
Securityaffairs
a year ago
DARKReading
a year ago
CERT-EU
a year ago
Krebs on Security
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
CERT-EU
a year ago