VDB
CVE-2023-1533
CVE-2023-1533
PUBLISHED
In Google Chrome und Microsoft Edge existieren mehrere Schwachstellen. Diese sind auf mehrere Use-after-Free sowie Out-of-Bounds-Lesefehler zurückzuführen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen oder Informationen offenzulegen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.
EPSS 0.42% · 62.3th percentile
Risk Scores
EPSS Score
0.42%
62.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Microsoft Edge < 111.0.1661.54 | |
| Fedora | Fedora Linux | |
| Microsoft | Microsoft Edge | |
| Gentoo | Gentoo Linux | |
| Ubuntu | Ubuntu Linux | |
| Debian | Debian Linux |
Exploit Intelligence
- https://chromereleases.googleblog.com/2023/03/stable-channel-update-for-desktop_21.html (circl)
- https://crbug.com/1422183 (circl)
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FG3CRADL7IL5IHK4NCHG4LAYLKHFXETX/ (circl)
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HO3QZY4UQFP4XNF43ILMVVOABMB7KAQ5/ (circl)
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NGWWGQULJ7QRNP4GY57HE7OO7VMRWMPN/ (circl)
- https://security.gentoo.org/glsa/202309-17 (circl)
Timeline
- Mar 21, 2023 CVE Published
- Mar 22, 2023 EPSS Score
- Apr 29, 2023 EPSS Score
- Jun 7, 2023 EPSS Score
- Aug 23, 2023 EPSS Score
- Sep 30, 2023 EPSS Score
- Nov 8, 2023 EPSS Score
- Dec 16, 2023 EPSS Score
- Jan 24, 2024 EPSS Score
- Mar 2, 2024 EPSS Score
- May 18, 2024 EPSS Score
- Jun 25, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-0715.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0715 advisory
- https://security.gentoo.org/glsa/202309-17 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-221f366aca advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-9631f50abc advisory
- https://ubuntu.com/security/notices/USN-6021-1 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-78e350cb88 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-c93631749b advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-f07892dd59 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-4821639cb4 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-7573786f98 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-e0ec985df4 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-d6e0ee0741 advisory
- https://learn.microsoft.com/en-us/deployedge/microsoft-edge-relnotes-security#march-24-2023 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-afb29b2fce advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-7b4cf5b91e advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-768e906db7 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-3003165311 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-0e77b3d321 advisory
- https://lists.debian.org/debian-security-announce/2023/msg00067.html advisory
…and 9 more