Lucene search

K

ChromeCVELIST:CVE-2023-4761

HistorySep 05, 2023 - 9:57 p.m.

CVE-2023-4761

2023-09-0521:57:42

Chrome

www.cve.org

1

memory access

google chrome

remote attacker

renderer process

html page

security severity

8 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

50.2%

Out of bounds memory access in FedCM in Google Chrome prior to 116.0.5845.179 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)

CNA Affected

[
  {
    "vendor": "Google",
    "product": "Chrome",
    "versions": [
      {
        "version": "116.0.5845.179",
        "status": "affected",
        "lessThan": "116.0.5845.179",
        "versionType": "custom"
      }
    ]
  }
]

References

chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop.html

crbug.com/1476403

lists.fedoraproject.org/archives/list/[email protected]/message/27NR3KG553CG6LGPMP6SHWEVHTYPL6RC/

lists.fedoraproject.org/archives/list/[email protected]/message/6T655QF7CQ3DYAMPFV7IECQYGDEUIVVT/

lists.fedoraproject.org/archives/list/[email protected]/message/KUQ7CTX3W372X3UY56VVNAHCH6H2F4X3/

security.gentoo.org/glsa/202311-11

security.gentoo.org/glsa/202312-07

security.gentoo.org/glsa/202401-34

www.debian.org/security/2023/dsa-5491

8 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

50.2%

Related for CVELIST:CVE-2023-4761

debiancve1 veracode1 cve1 prion1 ubuntucve1 osv2 mscve1 nvd1 nessus13 openvas9 chrome1 debian1 freebsd2 kaspersky2 fedora3 mageia1 photon2 gentoo3 rapid7blog1