VDB
CVE-2023-4762
CVE-2023-4762
PUBLISHED
KEV
Es bestehen mehrere Schwachstellen in Google Chrome / Microsoft Edge. Diese Fehler bestehen in den Komponenten FedCM, V8, Networks und BFCache aufgrund eines Out-of-Bounds-Speicherzugriffs, einer Typverwechslung, einer Verwendung nach dem Freigeben und einer falschen Sicherheits-UI. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen und Cross-Site-Scripting (XSS)-Angriffe durchzuführen. Eine erfolgreiche Ausnutzung erfordert eine Benutzerinteraktion.
EPSS 55.80% · 98.1th percentile
Risk Scores
EPSS Score
55.80%
98.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Fedora | Fedora Linux | |
| Gentoo | Gentoo Linux | |
| Debian | Debian Linux |
Exploit Intelligence
- sherlocksecurity/CVE-2023-4762-Code-Review (github-poc)
- sherlocksecurity/CVE-2023-4762-Code-Review (github-poc)
- sherlocksecurity/CVE-2023-4762-Code-Review (github-poc)
- sherlocksecurity/CVE-2023-4762-Code-Review (github-poc)
- sherlocksecurity/CVE-2023-4762-Code-Review (github-poc)
- sherlocksecurity/CVE-2023-4762-Code-Review (github-poc)
- sherlocksecurity/CVE-2023-4762-Code-Review (github-poc)
- sherlocksecurity/CVE-2023-4762-Code-Review (github-poc)
- sherlocksecurity/CVE-2023-4762-Code-Review (github-poc)
- sherlocksecurity/CVE-2023-4762-Code-Review (github-poc)
…and 136 more exploits
Timeline
- Jan 20, 1970 VulnCheck XDB Entry
- Jan 20, 1970 VulnCheck XDB Entry
- Jan 20, 1970 VulnCheck XDB Entry
- Jan 20, 1970 VulnCheck XDB Entry
- Jan 20, 1970 VulnCheck XDB Entry
- Jan 21, 1970 VulnCheck XDB Entry
- Jun 8, 2021 VulnCheck KEV Exploitation
- Aug 15, 2022 VulnCheck KEV Exploitation
- Jan 17, 2023 VulnCheck KEV Exploitation
- Aug 30, 2023 VulnCheck KEV Exploitation
- Sep 5, 2023 PoC Published
- Sep 5, 2023 CVE Published
References
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2267.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2267 advisory
- http://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop.html advisory
- https://learn.microsoft.com/en-us/deployedge/microsoft-edge-relnotes-security#september-7-2023 advisory
- https://lists.debian.org/debian-security-announce/2023/msg00183.html advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-e9ce7bf135 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-d79ff22c5b advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-3efeaee7e4 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-4cc86adbd2 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-eb44efc398 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-1e441f3098 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-9a6fd7a504 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-509640a8a6 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-32fa4259f4 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-9d0dbed062 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-788f9bbb3f advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-ea08732e6a advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-c66924cb92 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-d58a84dda8 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-54433bc31f advisory
…and 13 more