Lucene search

K
cvelistChromeCVELIST:CVE-2023-4366
HistoryAug 15, 2023 - 5:07 p.m.

CVE-2023-4366

2023-08-1517:07:14
Chrome
www.cve.org
1
vulnerability
google chrome
extension
heap corruption
html page

0.001 Low

EPSS

Percentile

39.2%

Use after free in Extensions in Google Chrome prior to 116.0.5845.96 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

CNA Affected

[
  {
    "vendor": "Google",
    "product": "Chrome",
    "versions": [
      {
        "version": "116.0.5845.96",
        "status": "affected",
        "lessThan": "116.0.5845.96",
        "versionType": "custom"
      }
    ]
  }
]