Lucene search

K
cvelistChromeCVELIST:CVE-2023-4354
HistoryAug 15, 2023 - 5:07 p.m.

CVE-2023-4354

2023-08-1517:07:11
Chrome
www.cve.org
skia
buffer overflow
google chrome
remote attacker
renderer process
heap corruption
html page
high severity

9 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

61.3%

Heap buffer overflow in Skia in Google Chrome prior to 116.0.5845.96 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

CNA Affected

[
  {
    "vendor": "Google",
    "product": "Chrome",
    "versions": [
      {
        "version": "116.0.5845.96",
        "status": "affected",
        "lessThan": "116.0.5845.96",
        "versionType": "custom"
      }
    ]
  }
]