vulnerability

FreeBSD: VID-fd87a250-ff78-11ed-8290-a8a1599412c6 (CVE-2023-2937): chromium -- multiple vulnerabilities

Try Surface Command

Back to search

Severity

CVSS

(AV:N/AC:M/Au:N/C:N/I:P/A:N)

Published

May 31, 2023

Added

Jun 1, 2023

Modified

Jun 15, 2026

Description

Inappropriate implementation in Picture In Picture in Google Chrome prior to 114.0.5735.90 allowed a remote attacker who had compromised the renderer process to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. (Chromium security severity: Medium)

Solutions

freebsd-upgrade-package-chromiumfreebsd-upgrade-package-ungoogled-chromium

References

CVE-2023-2937
https://attackerkb.com/topics/CVE-2023-2937
CWE-451
EUVD-EUVD-2023-34383
https://euvd.enisa.europa.eu/vulnerability/EUVD-2023-34383

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report