VDB
CVE-2023-5186
CVE-2023-5186
PUBLISHED
In Google Chrome und Microsoft Edge existieren mehrere Schwachstellen aufgrund von Pufferüberlauf- und Use-After-Free-Fehlern. Ein Angreifer kann dadurch beliebigen Code ausführen oder andere, nicht näher beschriebene Auswirkungen erzielen. Für eine erfolgreiche Ausnutzung ist eine Benutzeraktion erforderlich, z. B. das Laden einer bösartig gestalteten Webseite.
EPSS 1.22% · 79.4th percentile
Risk Scores
EPSS Score
1.22%
79.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Microsoft Edge <extended 116.0.1938.98 | |
| Fortinet | Fortinet FortiClient EMS <7.2.2 | |
| Fortinet | Fortinet FortiClient Linux <7.4.0 | |
| Fedora | Fedora Linux | |
| Fortinet | Fortinet FortiClient EMS <7.0.10 | |
| Gentoo | Gentoo Linux | |
| Microsoft | Microsoft Edge <117.0.2045.47 | |
| Ubuntu | Ubuntu Linux | |
| Fortinet | Fortinet FortiClient Windows <7.0.10 | |
| IGEL | IGEL OS 11 | |
| Fortinet | Fortinet FortiClient Windows <7.2.3 | |
| Fortinet | Fortinet FortiClient Mac <7.2.5 | |
| Fortinet | Fortinet FortiClient Linux <7.2.5 | |
| Debian | Debian Linux | |
| Red Hat | Red Hat Enterprise Linux | |
| Fortinet | Fortinet FortiClient Mac <7.4.0 | |
| IGEL | IGEL OS 12 | |
| Google Chrome <117.0.5938.132 |
Exploit Intelligence
Timeline
- Jan 21, 1970 Distribution Patch
- Jan 21, 1970 Security Advisory
- Jan 21, 1970 Security Advisory
- Sep 27, 2023 CVE Published
- Sep 29, 2023 EPSS Score
- Oct 31, 2023 EPSS Score
- Dec 2, 2023 EPSS Score
- Feb 3, 2024 EPSS Score
- Mar 6, 2024 EPSS Score
- Apr 7, 2024 EPSS Score
- May 9, 2024 EPSS Score
- Jul 11, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2498.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2498 advisory
- https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_27.html advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-d66a01ad4f advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-8f3e1b6f78 advisory
- https://lists.debian.org/debian-security-announce/2023/msg00203.html advisory
- https://lists.debian.org/debian-lts-announce/2023/10/msg00001.html advisory
- https://lists.debian.org/debian-security-announce/2023/msg00201.html advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-0cd03c3746 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-c890266d3f advisory
- https://www.debian.org/security/2023/dsa-5508 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-cca1f87440 advisory
- https://www.debian.org/security/2023/dsa-5510 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-edc9c74369 advisory
- https://learn.microsoft.com/en-us/deployedge/microsoft-edge-relnotes-security#september-29-2023 advisory
- https://ubuntu.com/security/notices/USN-6403-1 advisory
- https://kb.igel.com/securitysafety/en/isn-2023-21-libvpx-vulnerability-in-chromium-and-firefox-101063307.html advisory
- https://access.redhat.com/errata/RHSA-2023:5536.html advisory
- https://access.redhat.com/errata/RHSA-2023:5537.html advisory
- https://access.redhat.com/errata/RHSA-2023:5538.html advisory
…and 4 more