Lucene search

K
cvelistChromeCVELIST:CVE-2023-5186
HistorySep 28, 2023 - 3:23 p.m.

CVE-2023-5186

2023-09-2815:23:18
Chrome
www.cve.org
2
google chrome
use after free
vulnerability
remote attacker
heap corruption
ui interaction
security severity high

EPSS

0.002

Percentile

54.5%

Use after free in Passwords in Google Chrome prior to 117.0.5938.132 allowed a remote attacker who convinced a user to engage in specific UI interaction to potentially exploit heap corruption via crafted UI interaction. (Chromium security severity: High)

CNA Affected

[
  {
    "vendor": "Google",
    "product": "Chrome",
    "versions": [
      {
        "version": "117.0.5938.132",
        "status": "affected",
        "lessThan": "117.0.5938.132",
        "versionType": "custom"
      }
    ]
  }
]