Lucene search
K

CVE-2023-2936

🗓️ 30 May 2023 21:31:40Reported by ChromeType 
cve
 cve
🔗 web.nvd.nist.gov👁 194 Views🌐 WEB

Type Confusion in V8 in Google Chrome prior to 114.0.5735.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page

Related
Detection
Affected
Refs
Paths
NVD
Vulners
Node
googlechromeRange<114.0.5735.90
[
  {
    "vendor": "Google",
    "product": "Chrome",
    "versions": [
      {
        "version": "114.0.5735.90",
        "status": "affected",
        "lessThan": "114.0.5735.90",
        "versionType": "custom"
      }
    ]
  }
]
ParameterPositionPathDescriptionCWE
objectpathhttps://source.chromium.org/chromium/chromium/src/+/main:v8/src/objects/js-objects.cc;drc=4becb939339f1de4744f95b9fcb10bda57cf7e99;l=4748SetAccessor may modify non-extensible objects without proper configurability checks, enabling property accessor creation and potential type confusion.CWE-843
namepathhttps://source.chromium.org/chromium/chromium/src/+/main:v8/src/objects/js-objects.cc;drc=4becb939339f1de4744f95b9fcb10bda57cf7e99;l=4748SetAccessor may modify non-extensible objects without proper configurability checks, enabling property accessor creation and potential type confusion.CWE-843
infopathhttps://source.chromium.org/chromium/chromium/src/+/main:v8/src/objects/js-objects.cc;drc=4becb939339f1de4744f95b9fcb10bda57cf7e99;l=4748SetAccessor may modify non-extensible objects without proper configurability checks, enabling property accessor creation and potential type confusion.CWE-843
lookuppathhttps://source.chromium.org/chromium/chromium/src/+/main:v8/src/ic/ic.cc;drc=1f3358ace7565e5efc4f49611d97838901ae13f2;l=843Module namespace export handling may assume export entries exist and use value indices, enabling misuse of IC handlers and potential exploitation.CWE-843
namepathhttps://source.chromium.org/chromium/chromium/src/+/main:v8/src/ic/ic.cc;drc=1f3358ace7565e5efc4f49611d97838901ae13f2;l=843Module namespace export handling may assume export entries exist and use value indices, enabling misuse of IC handlers and potential exploitation.CWE-843
exportpathhttps://source.chromium.org/chromium/chromium/src/+/main:v8/src/ic/ic.cc;drc=1f3358ace7565e5efc4f49611d97838901ae13f2;l=843Module namespace export handling may assume export entries exist and use value indices, enabling misuse of IC handlers and potential exploitation.CWE-843
chromepathhttps://source.chromium.org/chromium/chromium/src/+/main:extensions/renderer/native_extension_bindings_system.cc;drc=57b92c9b9630156148f8589ffe6e0ee857a791c4;l=116Runtime binding setup defines chrome properties via SetLazyDataProperty without robust extensibility checks, enabling extension-related object manipulation.CWE-843
SetLazyDataPropertypathhttps://source.chromium.org/chromium/chromium/src/+/main:extensions/renderer/native_extension_bindings_system.cc;drc=57b92c9b9630156148f8589ffe6e0ee857a791c4;l=116Runtime binding setup defines chrome properties via SetLazyDataProperty without robust extensibility checks, enabling extension-related object manipulation.CWE-843
BindingAccessorpathhttps://source.chromium.org/chromium/chromium/src/+/main:extensions/renderer/native_extension_bindings_system.cc;drc=57b92c9b9630156148f8589ffe6e0ee857a791c4;l=116Runtime binding setup defines chrome properties via SetLazyDataProperty without robust extensibility checks, enabling extension-related object manipulation.CWE-843

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 05:53Current
8.4High risk
Vulners AI Score8.4
CVSS 3.18.8
EPSS0.23022
194