Lucene search
MicrosoftMS:CVE-2023-5187HistorySep 29, 2023 - 4:25 p.m.
Chromium: CVE-2023-5187 Use after free in Extensions
2023-09-2916:25:43
Microsoft
msrc.microsoft.com
136
cve-2023-5187
use after free
extensions
chromium-based microsoft edge
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
34.2%
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
Affected configurations
Node
microsoftedge_chromiumRange<116.0.1938.98
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | edge_chromium | * | cpe:2.3:a:microsoft:edge_chromium:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2023-5187
2023-09-28 15:23:18
cve
cve
CVE-2023-5187
2023-09-28 16:15:10
nessus
nessus
FreeBSD : electron25 -- Use after free in extensions vulnerability (4281b712-ad6b-4c21-8f66-619a9150691f)
2023-10-12 00:00:00
Google Chrome < 117.0.5938.132 Multiple Vulnerabilities
2023-09-27 00:00:00
Google Chrome < 117.0.5938.132 Multiple Vulnerabilities
2023-09-27 00:00:00
veracode
veracode
Use After Free
2023-10-08 08:09:40
osv
osv
CVE-2023-5187
2023-09-28 16:15:10
ungoogled-chromium-117.0.5938.132-1.1 on GA media
2024-06-15 00:00:00
chromium - security update
2023-09-29 00:00:00
debiancve
debiancve
CVE-2023-5187
2023-09-28 16:15:10
ubuntucve
ubuntucve
CVE-2023-5187
2023-09-28 00:00:00
freebsd
freebsd
electron25 -- Use after free in extensions vulnerability
2023-10-11 00:00:00
chromium -- multiple vulnerabilities
2023-09-27 00:00:00
prion
prion
Design/Logic Flaw
2023-09-28 16:15:00
nvd
nvd
CVE-2023-5187
2023-09-28 16:15:10
kaspersky
kaspersky
KLA60816 Multiple vulnerabilities in Google Chrome
2023-09-27 00:00:00
KLA61313 Multiple vulnerabilities in Opera
2023-10-03 00:00:00
KLA61043 Multiple vulnerabilities in Microsoft Browser
2023-09-29 00:00:00
openvas
openvas
Google Chrome Security Update (stable-channel-update-for-desktop_27-2023-09) - Linux
2023-10-04 00:00:00
openSUSE: Security Advisory for opera (openSUSE-SU-2023:0297-1)
2024-03-04 00:00:00
openSUSE: Security Advisory for opera (openSUSE-SU-2023:0298-1)
2024-03-04 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2023-09-27 00:00:00
debian
debian
[SECURITY] [DSA 5508-1] chromium security update
2023-09-29 17:54:25
hivepro
hivepro
Google and Firefox fixes Zero-Day Flaw Exploited in the Wild
2023-10-02 06:29:28
fedora
fedora
[SECURITY] Fedora 37 Update: chromium-117.0.5938.132-1.fc37
2023-10-02 00:40:35
[SECURITY] Fedora 38 Update: chromium-117.0.5938.132-2.fc38
2023-10-02 01:24:41
[SECURITY] Fedora 39 Update: chromium-117.0.5938.132-2.fc39
2023-10-02 00:16:32
mageia
mageia
Updated chromium-browser-stable package fixes bugs and vulnerabilities
2023-10-03 13:53:29
photon
photon
Critical Photon OS Security Update - PHSA-2023-5.0-0160
2023-12-01 00:00:00
Important Photon OS Security Update - PHSA-2023-4.0-0459
2023-08-28 00:00:00
gentoo
gentoo
Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities
2024-01-31 00:00:00
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
34.2%
Related for MS:CVE-2023-5187