VDB
CVE-2023-5187
CVE-2023-5187
PUBLISHED
In Google Chrome und Microsoft Edge existieren mehrere Schwachstellen aufgrund von Pufferüberlauf- und Use-After-Free-Fehlern. Ein Angreifer kann dadurch beliebigen Code ausführen oder andere, nicht näher beschriebene Auswirkungen erzielen. Für eine erfolgreiche Ausnutzung ist eine Benutzeraktion erforderlich, z. B. das Laden einer bösartig gestalteten Webseite.
EPSS 0.22% · 44.8th percentile
Risk Scores
EPSS Score
0.22%
44.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu | Ubuntu Linux | |
| IGEL | IGEL OS 12 | |
| Fortinet | Fortinet FortiClient Linux <7.2.5 | |
| Fortinet | Fortinet FortiClient Windows <7.0.10 | |
| Gentoo | Gentoo Linux | |
| Debian | Debian Linux | |
| Fedora | Fedora Linux | |
| Red Hat | Red Hat Enterprise Linux | |
| IGEL | IGEL OS 11 | |
| Fortinet | Fortinet FortiClient Mac <7.4.0 | |
| Microsoft | Microsoft Edge <117.0.2045.47 | |
| Fortinet | Fortinet FortiClient EMS <7.0.10 | |
| Google Chrome <117.0.5938.132 | ||
| Fortinet | Fortinet FortiClient Linux <7.4.0 | |
| Microsoft | Microsoft Edge <extended 116.0.1938.98 | |
| Fortinet | Fortinet FortiClient Mac <7.2.5 | |
| Fortinet | Fortinet FortiClient Windows <7.2.3 | |
| Fortinet | Fortinet FortiClient EMS <7.2.2 |
Exploit Intelligence
Timeline
- Jan 21, 1970 Distribution Patch
- Jan 21, 1970 Security Advisory
- Jan 21, 1970 Security Advisory
- Sep 27, 2023 CVE Published
- Sep 29, 2023 EPSS Score
- Oct 31, 2023 EPSS Score
- Dec 2, 2023 EPSS Score
- Jan 2, 2024 EPSS Score
- Feb 3, 2024 EPSS Score
- Mar 6, 2024 EPSS Score
- Apr 7, 2024 EPSS Score
- May 9, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2498.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2498 advisory
- https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_27.html advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-d66a01ad4f advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-8f3e1b6f78 advisory
- https://lists.debian.org/debian-security-announce/2023/msg00203.html advisory
- https://lists.debian.org/debian-lts-announce/2023/10/msg00001.html advisory
- https://lists.debian.org/debian-security-announce/2023/msg00201.html advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-0cd03c3746 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-c890266d3f advisory
- https://www.debian.org/security/2023/dsa-5508 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-cca1f87440 advisory
- https://www.debian.org/security/2023/dsa-5510 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-edc9c74369 advisory
- https://learn.microsoft.com/en-us/deployedge/microsoft-edge-relnotes-security#september-29-2023 advisory
- https://ubuntu.com/security/notices/USN-6403-1 advisory
- https://kb.igel.com/securitysafety/en/isn-2023-21-libvpx-vulnerability-in-chromium-and-firefox-101063307.html advisory
- https://access.redhat.com/errata/RHSA-2023:5536.html advisory
- https://access.redhat.com/errata/RHSA-2023:5537.html advisory
- https://access.redhat.com/errata/RHSA-2023:5538.html advisory
…and 4 more