9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.4 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
61.1%
ChromeOS M119 Stable
The Stable channel is being updated to OS version: 15633.44.0 Browser version: 119.0.6045.158 for most ChromeOS devices.
If you find new issues, please let us know one of the following ways
Interested in switching channels? Find out how.
Security Fixes and Rewards
ChromeOS Vulnerabiltity Rewards Program Reported Bug Fixes:
[$TBD] [1477932] Medium CVE-2023-21216 Use-after-free in PowerVR GPU Driver. Reported by lovepink on 2023-09-07
We would like to thank the security researchers that report vulnerabilities to us via bughunters.google.com to keep ChromeOS and the entire open source ecosystem secure.
Chrome Browser Security Fixes:
[N/A] [1497859] High CVE-2023-5996: Use after free in WebAudio. Reported by Huang Xilin of Ant Group Light-Year Security Lab via Tianfu Cup 2023 on 2023-10-30
Other 3rd Party Security Fixes Included:
[NA] High Fixes CVE-2023-35685 on impacted platforms
[NA] Medium Fixes CVE-2023-4244 in Linux Kernel
[NA] Medium Fixes CVE-2023-5197 in Linux Kernel
Android Runtime Container Security Fixes:
[NA] Critical Fixes CVE-2023-40113 on impacted platforms
[NA] High Fixes CVE-2023-40109 on impacted platforms
[NA] High Fixes CVE-2023-40114 on impacted platforms
[NA] High Fixes CVE-2023-40110 on impacted platforms
[NA] High Fixes CVE-2023-40112 on impacted platforms
[NA] Medium Fixes CVE-2023-40118 on impacted platforms
Users who are pinned to a specific release of ChromeOS will not receive these security fixes or any other security fixes. We recommend updating to the latest version of Stable to ensure you are protected against exploitation of known vulnerabilities.
To see fixes included in the Long Term Stable channel, see the release notes.
Daniel Gagnon,
Google ChromeOS
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.4 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
61.1%