Lucene search
This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.GOOGLE_CHROME_117_0_5938_62.NASLHistorySep 12, 2023 - 12:00 a.m.
Google Chrome < 117.0.5938.62 Multiple Vulnerabilities
2023-09-1200:00:00
This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
57
google chrome
security vulnerabilities
heap buffer overflow
webp
windows host
remote attacker
memory write
html page
nessus scanner
cve-2023-4863
critical.
8.2 High
AI Score
Confidence
Low
The version of Google Chrome installed on the remote Windows host is prior to 117.0.5938.62. It is, therefore, affected by multiple vulnerabilities as referenced in the 2023_09_stable-channel-update-for-desktop_12 advisory.
- Heap buffer overflow in WebP allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity:
Critical) (CVE-2023-4863)
Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##
include('compat.inc');
if (description)
{
script_id(181291);
script_version("1.6");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/01/09");
script_cve_id(
"CVE-2023-4863",
"CVE-2023-4900",
"CVE-2023-4901",
"CVE-2023-4902",
"CVE-2023-4903",
"CVE-2023-4904",
"CVE-2023-4905",
"CVE-2023-4906",
"CVE-2023-4907",
"CVE-2023-4908",
"CVE-2023-4909"
);
script_xref(name:"CISA-KNOWN-EXPLOITED", value:"2023/10/04");
script_xref(name:"IAVA", value:"2023-A-0466-S");
script_name(english:"Google Chrome < 117.0.5938.62 Multiple Vulnerabilities");
script_set_attribute(attribute:"synopsis", value:
"A web browser installed on the remote Windows host is affected by multiple vulnerabilities.");
script_set_attribute(attribute:"description", value:
"The version of Google Chrome installed on the remote Windows host is prior to 117.0.5938.62. It is, therefore, affected
by multiple vulnerabilities as referenced in the 2023_09_stable-channel-update-for-desktop_12 advisory.
- Heap buffer overflow in WebP allowed a remote attacker to perform an out of
bounds memory write via a crafted HTML page. (Chromium security severity:
Critical) (CVE-2023-4863)
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
# https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_12.html
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?66ec415e");
script_set_attribute(attribute:"see_also", value:"https://crbug.com/1479274");
script_set_attribute(attribute:"see_also", value:"https://crbug.com/1430867");
script_set_attribute(attribute:"see_also", value:"https://crbug.com/1459281");
script_set_attribute(attribute:"see_also", value:"https://crbug.com/1454515");
script_set_attribute(attribute:"see_also", value:"https://crbug.com/1446709");
script_set_attribute(attribute:"see_also", value:"https://crbug.com/1453501");
script_set_attribute(attribute:"see_also", value:"https://crbug.com/1441228");
script_set_attribute(attribute:"see_also", value:"https://crbug.com/1449874");
script_set_attribute(attribute:"see_also", value:"https://crbug.com/1462104");
script_set_attribute(attribute:"see_also", value:"https://crbug.com/1451543");
script_set_attribute(attribute:"see_also", value:"https://crbug.com/1463293");
script_set_attribute(attribute:"solution", value:
"Upgrade to Google Chrome version 117.0.5938.62 or later.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:H/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-4863");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"exploited_by_malware", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2023/09/12");
script_set_attribute(attribute:"patch_publication_date", value:"2023/09/12");
script_set_attribute(attribute:"plugin_publication_date", value:"2023/09/12");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:google:chrome");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_set_attribute(attribute:"stig_severity", value:"I");
script_set_attribute(attribute:"thorough_tests", value:"true");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Windows");
script_copyright(english:"This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("google_chrome_installed.nasl", "smb_hotfixes.nasl");
script_require_keys("SMB/Google_Chrome/Installed");
exit(0);
}
include('google_chrome_version.inc');
get_kb_item_or_exit('SMB/Google_Chrome/Installed');
var installs = get_kb_list('SMB/Google_Chrome/*');
var product_name = get_kb_item_or_exit("SMB/ProductName", exit_code:1);
if ("Windows Server 2012" >< product_name)
audit(AUDIT_OS_SP_NOT_VULN);
google_chrome_check_version(installs:installs, fix:'117.0.5938.62', severity:SECURITY_HOLE, xss:FALSE, xsrf:FALSE);
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4863
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4900
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4901
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4902
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4903
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4904
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4905
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4906
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4907
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4908
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4909
www.nessus.org/u?66ec415e
crbug.com/1430867
crbug.com/1441228
crbug.com/1446709
crbug.com/1449874
crbug.com/1451543
crbug.com/1453501
crbug.com/1454515
crbug.com/1459281
crbug.com/1462104
crbug.com/1463293
crbug.com/1479274
Related
chrome
chrome
Stable Channel Update for Desktop
2023-09-12 00:00:00
Stable Channel Update for ChromeOS / ChromeOS Flex
2023-09-26 00:00:00
openvas
openvas
openSUSE: Security Advisory for chromium (openSUSE-SU-2023:0249-1)
2024-03-04 00:00:00
Debian: Security Advisory (DSA-5499-1)
2023-09-19 00:00:00
Mageia: Security Advisory (MGASA-2023-0283)
2023-10-10 00:00:00
kaspersky
kaspersky
KLA60560 Multiple vulnerabilities in Google Chrome
2023-09-12 00:00:00
KLA60746 Multiple vulnerabilities in Microsoft Browser
2023-09-15 00:00:00
KLA60569 DoS vulnerablity in Microsoft Browser
2023-09-12 00:00:00
nessus
nessus
FreeBSD : chromium -- multiple vulnerabilities (88754d55-521a-11ee-8290-a8a1599412c6)
2023-09-13 00:00:00
Debian DSA-5499-1 : chromium - security update
2023-09-19 00:00:00
Microsoft Edge (Chromium) < 117.0.2045.31 Multiple Vulnerabilities
2023-09-15 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2023-09-12 00:00:00
graphics/webp heap buffer overflow
2023-09-12 00:00:00
debian
debian
[SECURITY] [DSA 5499-1] chromium security update
2023-09-18 21:38:24
[SECURITY] [DSA 5498-1] thunderbird security update
2023-09-15 16:41:33
[SECURITY] [DSA 5496-1] firefox-esr security update
2023-09-13 20:47:06
fedora
fedora
[SECURITY] Fedora 39 Update: chromium-117.0.5938.132-2.fc39
2023-10-02 00:16:32
[SECURITY] Fedora 38 Update: chromium-117.0.5938.62-1.fc38
2023-09-18 01:25:57
[SECURITY] Fedora 37 Update: chromium-117.0.5938.88-1.fc37
2023-09-21 01:22:25
mageia
mageia
Updated chromium-browser-stable package fixes bugs and vulnerabilities
2023-10-03 13:53:29
Updated libwebp packages fix a security vulnerability
2023-10-03 13:53:29
cve
cve
cvelist
cvelist
mscve
mscve
Chromium: CVE-2023-4907 Inappropriate implementation in Intents
2023-09-15 07:00:00
Chromium: CVE-2023-4906 Insufficient policy enforcement in Autofill
2023-09-15 07:00:00
Chromium: CVE-2023-4901 Inappropriate implementation in Prompts
2023-09-15 07:00:00
debiancve
debiancve
veracode
veracode
Improper Input Validation
2023-10-09 17:25:28
Improper Access Control
2023-10-09 17:24:07
Spoofing Attack
2023-10-09 17:24:00
cnvd
cnvd
Google Chrome Security Bypass Vulnerability (CNVD-2023-75500)
2023-09-17 00:00:00
Google Chrome Security Bypass Vulnerability (CNVD-2023-75502)
2023-09-17 00:00:00
Google Chrome Security Bypass Vulnerability (CNVD-2023-75496)
2023-09-17 00:00:00
prion
prion
Design/Logic Flaw
2023-09-12 21:15:00
Design/Logic Flaw
2023-09-12 21:15:00
Design/Logic Flaw
2023-09-12 21:15:00
ubuntucve
ubuntucve
oraclelinux
oraclelinux
thunderbird security update
2023-09-19 00:00:00
libwebp security update
2023-09-19 00:00:00
libwebp security update
2023-09-20 00:00:00
cgr
cgr
CVE-2023-4863 vulnerabilities
2024-05-19 03:07:16
github
github
sharp vulnerability in libwebp dependency CVE-2023-4863
2023-11-16 17:14:15
attackerkb
attackerkb
CVE-2023-4863
2023-09-12 00:00:00
osv
osv
PYSEC-2023-182
2023-09-29 21:31:43
Important: libwebp security update
2023-09-20 00:00:00
Important: firefox security update
2023-09-19 12:09:00
githubexploit
githubexploit
Exploit for Out-of-bounds Write in Google Chrome
2023-09-21 05:22:51
Exploit for Out-of-bounds Write in Google Chrome
2024-02-03 12:27:37
hp
hp
slackware
slackware
[slackware-security] mozilla-thunderbird
2023-09-14 02:32:34
[slackware-security] libwebp
2023-09-14 21:21:47
paloalto
paloalto
Impact of libwebp Vulnerability CVE-2023-4863
2023-10-02 23:40:00
gitlab
gitlab
CefSharp affected by heap buffer overflow in WebP
2023-09-21 00:00:00
ics
ics
Siemens Mendix Studio Pro
2023-11-16 12:00:00
ubuntu
ubuntu
libwebp vulnerability
2023-09-28 00:00:00
redhatcve
redhatcve
CVE-2023-4863
2023-09-14 14:24:56
almalinux
almalinux
Important: libwebp security update
2023-09-20 00:00:00
redhat
redhat
(RHSA-2023:5222) Important: libwebp security update
2023-09-19 07:11:07
hivepro
hivepro
Google Addresses Fourth Zero-Day Flaw Exploited by Attackers Wildly
2023-09-12 13:05:09