Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.MACOSX_GOOGLE_CHROME_109_0_5414_87.NASL
HistoryJan 10, 2023 - 12:00 a.m.

Google Chrome < 109.0.5414.87 Multiple Vulnerabilities

2023-01-1000:00:00
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
37
JSON

The version of Google Chrome installed on the remote macOS host is prior to 109.0.5414.87. It is, therefore, affected by multiple vulnerabilities as referenced in the 2023_01_stable-channel-update-for-desktop advisory.

  • Use after free in Overview Mode. (CVE-2023-0128)

  • Heap buffer overflow in Network Service. (CVE-2023-0129)

  • Inappropriate implementation in Fullscreen API. (CVE-2023-0130, CVE-2023-0136)

  • Inappropriate implementation in iframe Sandbox. (CVE-2023-0131)

  • Inappropriate implementation in Permission prompts. (CVE-2023-0132, CVE-2023-0133)

  • Use after free in Cart. (CVE-2023-0134, CVE-2023-0135)

  • Heap buffer overflow in Platform Apps. (CVE-2023-0137)

  • Heap buffer overflow in libphonenumber. (CVE-2023-0138)

  • Insufficient validation of untrusted input in Downloads. (CVE-2023-0139)

  • Inappropriate implementation in File System API. (CVE-2023-0140)

  • Insufficient policy enforcement in CORS. (CVE-2023-0141)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(169761);
  script_version("1.4");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/10/24");

  script_cve_id(
    "CVE-2023-0128",
    "CVE-2023-0129",
    "CVE-2023-0130",
    "CVE-2023-0131",
    "CVE-2023-0132",
    "CVE-2023-0133",
    "CVE-2023-0134",
    "CVE-2023-0135",
    "CVE-2023-0136",
    "CVE-2023-0137",
    "CVE-2023-0138",
    "CVE-2023-0139",
    "CVE-2023-0140",
    "CVE-2023-0141"
  );
  script_xref(name:"IAVA", value:"2023-A-0029-S");

  script_name(english:"Google Chrome < 109.0.5414.87 Multiple Vulnerabilities");

  script_set_attribute(attribute:"synopsis", value:
"A web browser installed on the remote macOS host is affected by multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The version of Google Chrome installed on the remote macOS host is prior to 109.0.5414.87. It is, therefore, affected by
multiple vulnerabilities as referenced in the 2023_01_stable-channel-update-for-desktop advisory.

  - Use after free in Overview Mode. (CVE-2023-0128)

  - Heap buffer overflow in Network Service. (CVE-2023-0129)

  - Inappropriate implementation in Fullscreen API. (CVE-2023-0130, CVE-2023-0136)

  - Inappropriate implementation in iframe Sandbox. (CVE-2023-0131)

  - Inappropriate implementation in Permission prompts. (CVE-2023-0132, CVE-2023-0133)

  - Use after free in Cart. (CVE-2023-0134, CVE-2023-0135)

  - Heap buffer overflow in Platform Apps. (CVE-2023-0137)

  - Heap buffer overflow in libphonenumber. (CVE-2023-0138)

  - Insufficient validation of untrusted input in Downloads. (CVE-2023-0139)

  - Inappropriate implementation in File System API. (CVE-2023-0140)

  - Insufficient policy enforcement in CORS. (CVE-2023-0141)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  # https://chromereleases.googleblog.com/2023/01/stable-channel-update-for-desktop.html
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?cc413e40");
  script_set_attribute(attribute:"see_also", value:"https://crbug.com/1353208");
  script_set_attribute(attribute:"see_also", value:"https://crbug.com/1382033");
  script_set_attribute(attribute:"see_also", value:"https://crbug.com/1370028");
  script_set_attribute(attribute:"see_also", value:"https://crbug.com/1357366");
  script_set_attribute(attribute:"see_also", value:"https://crbug.com/1371215");
  script_set_attribute(attribute:"see_also", value:"https://crbug.com/1375132");
  script_set_attribute(attribute:"see_also", value:"https://crbug.com/1385709");
  script_set_attribute(attribute:"see_also", value:"https://crbug.com/1385831");
  script_set_attribute(attribute:"see_also", value:"https://crbug.com/1356987");
  script_set_attribute(attribute:"see_also", value:"https://crbug.com/1399904");
  script_set_attribute(attribute:"see_also", value:"https://crbug.com/1346675");
  script_set_attribute(attribute:"see_also", value:"https://crbug.com/1367632");
  script_set_attribute(attribute:"see_also", value:"https://crbug.com/1326788");
  script_set_attribute(attribute:"see_also", value:"https://crbug.com/1362331");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Google Chrome version 109.0.5414.87 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-0138");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");

  script_set_attribute(attribute:"vuln_publication_date", value:"2023/01/10");
  script_set_attribute(attribute:"patch_publication_date", value:"2023/01/10");
  script_set_attribute(attribute:"plugin_publication_date", value:"2023/01/10");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:google:chrome");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"MacOS X Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("macosx_google_chrome_installed.nbin");
  script_require_keys("MacOSX/Google Chrome/Installed");

  exit(0);
}
include('google_chrome_version.inc');

get_kb_item_or_exit('MacOSX/Google Chrome/Installed');

google_chrome_check_version(fix:'109.0.5414.87', severity:SECURITY_HOLE, xss:FALSE, xsrf:FALSE);
VendorProductVersionCPE
googlechromecpe:/a:google:chrome

References

Related

openvas 6
chrome 2
nessus 9
osv 1
debian 1
mageia 1
kaspersky 2
freebsd 1
altlinux 1
mscve 12
cvelist 14
debiancve 14
prion 14
cnvd 4
ubuntucve 14
cve 14
veracode 14
attackerkb 1
alpinelinux 1
gentoo 2
avleonov 1
openvas
openvas
Debian: Security Advisory (DSA-5317-1)
2023-01-15 00:00:00
Google Chrome Security Update (stable-channel-update-for-desktop-2023-01) - Mac OS X
2023-01-11 00:00:00
Mageia: Security Advisory (MGASA-2023-0016)
2023-03-28 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2023-01-10 00:00:00
Stable Channel Update for ChromeOS / ChromeOS Flex
2023-01-13 00:00:00
nessus
nessus
FreeBSD : chromium -- multiple vulnerabilities (7b929503-911d-11ed-a925-3065ec8fd3ec)
2023-01-10 00:00:00
Debian DSA-5317-1 : chromium - security update
2023-01-14 00:00:00
Google Chrome < 109.0.5414.74 Multiple Vulnerabilities (deprecated)
2023-01-10 00:00:00
osv
osv
chromium - security update
2023-01-13 00:00:00
debian
debian
[SECURITY] [DSA 5317-1] chromium security update
2023-01-13 19:18:31
mageia
mageia
Updated chromium-browser-stable packages fix security vulnerability
2023-01-24 10:58:25
kaspersky
kaspersky
KLA20150 Multiple vulnerabilities in Google Chrome
2023-01-10 00:00:00
KLA20163 Multiple vulnerabilities in Microsoft Browser
2023-01-12 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2023-01-10 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package yandex-browser-stable version 23.3.1.916-alt1
2023-04-11 00:00:00
mscve
mscve
Chromium:CVE-2023-0140: Inappropriate implementation in File System API
2023-01-12 20:43:55
Chromium:CVE-2023-0134: Use after free in Cart
2023-01-12 20:43:39
Chromium:CVE-2023-0132: Inappropriate implementation in Permission prompts
2023-01-12 20:43:34
cvelist
cvelist
CVE-2023-0140
2023-01-10 00:00:00
CVE-2023-0134
2023-01-10 00:00:00
CVE-2023-0132
2023-01-10 00:00:00
debiancve
debiancve
CVE-2023-0134
2023-01-10 20:15:11
CVE-2023-0130
2023-01-10 20:15:10
CVE-2023-0139
2023-01-10 20:15:11
prion
prion
Design/Logic Flaw
2023-01-10 20:15:00
Design/Logic Flaw
2023-01-10 20:15:00
Input validation
2023-01-10 20:15:00
cnvd
cnvd
Google Chrome Input Validation Error Vulnerability (CNVD-2023-12024)
2023-01-12 00:00:00
Google Chrome Information Disclosure Vulnerability (CNVD-2023-12025)
2023-01-12 00:00:00
Google Chrome Buffer Overflow Vulnerability (CNVD-2023-12026)
2023-01-12 00:00:00
ubuntucve
ubuntucve
CVE-2023-0135
2023-01-10 00:00:00
CVE-2023-0140
2023-01-10 00:00:00
CVE-2023-0133
2023-01-10 00:00:00
cve
cve
CVE-2023-0137
2023-01-10 20:15:11
CVE-2023-0139
2023-01-10 20:15:11
CVE-2023-0130
2023-01-10 20:15:10
veracode
veracode
Insufficient Validation
2023-03-12 22:34:06
Spoofing Attack
2023-03-12 22:34:45
Denial Of Service (DoS)
2023-03-12 22:34:23
attackerkb
attackerkb
CVE-2023-0129
2023-01-10 00:00:00
alpinelinux
alpinelinux
CVE-2023-0129
2023-01-10 20:15:10
gentoo
gentoo
Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities
2023-05-03 00:00:00
QtWebEngine: Multiple Vulnerabilities
2023-11-25 00:00:00
avleonov
avleonov
Microsoft Patch Tuesday February 2023: Win Graphics RCE, Edge RCE, Publisher SFB, CLFS EoP, Exchange RCEs, Word RCE, HoloLens1
2023-02-26 16:37:52
JSON
Related for MACOSX_GOOGLE_CHROME_109_0_5414_87.NASL
openvas6chrome2nessus9osv1debian1mageia1kaspersky2freebsd1altlinux1mscve12cvelist14debiancve14prion14cnvd4ubuntucve14cve14veracode14attackerkb1alpinelinux1gentoo2avleonov1