8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.002 Low
EPSS
Percentile
53.0%
chromium is vulnerable to Type Confusion. This vulnerability could allow an attacker to execute arbitrary code on a victim’s computer by exploiting a flaw in the V8 JavaScript engine. The impact of this vulnerability is high, as it can be exploited by attackers to steal sensitive data, take control of the victim’s computer, or install malware.
chromereleases.googleblog.com/2023/10/stable-channel-update-for-desktop.html
crbug.com/1485829
lists.fedoraproject.org/archives/list/[email protected]/message/BMFDRMWMT6ZBLGLLWSWHHRAUBOSUXQDR/
lists.fedoraproject.org/archives/list/[email protected]/message/M4GHJ3FK5NPHDRUR4OJOI4UU6FKSOOGG/
lists.fedoraproject.org/archives/list/[email protected]/message/RA6HMWNOYQ56R35MHW77GVW7373Z4RSN/
security-tracker.debian.org/tracker/CVE-2023-5346
security.gentoo.org/glsa/202401-34