The vulnerability of Google Chrome’s Crash Reporting component allows a violator to gain unauthorized access to protected information.

🗓️ 15 Mar 2023 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 2 Views

Chrome crash reporting flaw enables unauthorized data access via out of bounds memory.

Reporter	Title	Published	Views	Family All 382
AlpineLinux	CVE-2023-1217	7 Mar 202321:42	–	alpinelinux
Circl	CVE-2023-1217	8 Mar 202300:23	–	circl
CNNVD	Google Chrome 缓冲区错误漏洞	7 Mar 202300:00	–	cnnvd
CNVD	Google Chrome Crash reporting component buffer overflow vulnerability	13 Mar 202300:00	–	cnvd
CVE	CVE-2023-1217	7 Mar 202321:42	–	cve
Cvelist	CVE-2023-1217	7 Mar 202321:42	–	cvelist
FreeBSD	chromium -- multiple vulnerabilities	8 Mar 202300:00	–	freebsd
Debian	[SECURITY] [DSA 5371-1] chromium security update	9 Mar 202319:25	–	debian
Debian CVE	CVE-2023-1217	7 Mar 202321:42	–	debiancve
Tenable Nessus	Debian DSA-5371-1 : chromium - security update	10 Mar 202300:00	–	nessus

Vulners

Node

google google_chromeRange<111.0.5563.64

OR

fedora fedoraMatch37

Source	Link
security-tracker	www.security-tracker.debian.org/tracker/CVE-2023-1217
chromereleases	www.chromereleases.googleblog.com/2023/03/stable-channel-update-for-desktop.html
cisecurity	www.cisecurity.org/advisory/multiple-vulnerabilities-in-google-chrome-could-allow-for-arbitrary-code-execution_2023-027
cybersecurity-help	www.cybersecurity-help.cz/vdb/SB2023031001
crbug	www.crbug.com/1412658
bodhi	www.bodhi.fedoraproject.org/updates/FEDORA-2023-1cf9c4477b
xn--80ahaefyxhn	www.xn--80ahaefyxhn.xn--j1afgaq.xn--p1ai/bin/view/%D0%9E%D0%A1%D0%BD%D0%BE%D0%B2%D0%B0/%D0%9E%D0%B1%D0%BD%D0%BE%D0%B2%D0%BB%D0%B5%D0%BD%D0%B8%D1%8F/2.8/
web	www.web.nvd.nist.gov/view/vuln/detail

13 Sep 2023 00:00Current

7.5High risk

Vulners AI Score7.5

CVSS 36.5

CVSS 27.8

EPSS0.00524

google chrome crash reporting memory corruption unauthorized access web page