THREATOPS
THREAT OPSCVEs › CVE-2023-6345

CVE-2023-6345 — Google Skia Integer Overflow Vulnerability

CISA KEVExploited: confirmedGoogle

Google Chromium Skia contains an integer overflow vulnerability that allows a remote attacker, who has compromised the renderer process, to potentially perform a sandbox escape via a malicious file. This vulnerability affects Google Chrome and ChromeOS, Android, Flutter, and possibly other products.

Vulnerability details