← ExploitWatch
HomeExploited Vulnerabilities

CVE-2023-7024 — Actively Exploited: Chromium WebRTC (Google)

Google Chromium WebRTC, an open-source project providing web browsers with real-time communication, contains a heap buffer overflow vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could impact web browsers using WebRTC, including but not lim

CVE IDCVE-2023-7024
VendorGoogle
ProductChromium WebRTC
Vulnerability nameGoogle Chromium WebRTC Heap Buffer Overflow Vulnerability
Date added2024-01-02
Remediation due2024-01-23
Known ransomware useUnknown
Required actionApply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
DescriptionGoogle Chromium WebRTC, an open-source project providing web browsers with real-time communication, contains a heap buffer overflow vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could impact web browsers using WebRTC, including but not limited to Google Chrome.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →