CVE-2023-6702 — Vulnetix

CVE-2023-6702 PUBLISHED

Es bestehen mehrere Schwachstellen in verschiedenen Komponenten von Google Chrome und Microsoft Edge, wie z. B. V8, WebRTC, CSS u. a. aufgrund einer Typenverwechslung und eines "use after free" Fehlers. Ein Angreifer kann diese Schwachstellen ausnutzen, um nicht näher spezifizierte Auswirkungen zu verursachen, sowie potenziell Code auszuführen. Eine erfolgreiche Ausnutzung erfordert eine Benutzerinteraktion.

EPSS 57.95% · 98.2th percentile

Risk Scores

EPSS Score

57.95%

98.2th percentile

Affected Products

Vendor	Product	Versions
Debian	Debian Linux
Microsoft	Microsoft Edge
Fedora	Fedora Linux
Microsoft	Microsoft Edge 120.0.2210.77
Gentoo	Gentoo Linux
SUSE	SUSE Linux

Exploit Intelligence

CIRCL published-proof-of-concept: CVE-2023-6702 (circl-sighting)
CIRCL published-proof-of-concept: CVE-2023-6702 (circl-sighting)
CIRCL seen: CVE-2023-6702 (circl-sighting)
CIRCL published-proof-of-concept: CVE-2023-6702 (circl-sighting)
CIRCL published-proof-of-concept: CVE-2023-6702 (circl-sighting)
Chrome Renderer 1day RCE via Type Confusion in Async Stack Trace (v8ctf submission) (github-poc-repo)
Chrome Renderer 1day RCE via Type Confusion in Async Stack Trace (v8ctf submission) (github-poc-repo)
Chrome Renderer 1day RCE via Type Confusion in Async Stack Trace (v8ctf submission) (github-poc-repo)
Chrome Renderer 1day RCE via Type Confusion in Async Stack Trace (v8ctf submission) (github-poc-repo)
Chrome Renderer 1day RCE via Type Confusion in Async Stack Trace (v8ctf submission) (github-poc-repo)

…and 18 more exploits

Timeline

Jan 21, 1970 Security Advisory
Dec 12, 2023 CVE Published
Dec 15, 2023 EPSS Score
Jan 10, 2024 PoC Published
Feb 11, 2024 EPSS Score
Feb 18, 2024 CVE Updated
Mar 12, 2024 EPSS Score
May 9, 2024 EPSS Score
Jun 2, 2024 PoC Published
Jun 3, 2024 PoC Published
Jun 7, 2024 EPSS Score
Jun 10, 2024 PoC Published

References

Open in Interactive Console →