Lucene search
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.MACOSX_GOOGLE_CHROME_114_0_5735_90.NASLHistoryMay 30, 2023 - 12:00 a.m.
Google Chrome < 114.0.5735.90 Multiple Vulnerabilities
2023-05-3000:00:00
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
17
google chrome
macos
vulnerabilities
swiftshader
extensions
pdf
mojo
v8
picture in picture
installer
downloads
extensions api
out of bounds write
use after free
type confusion
inappropriate implementation
insufficient data validation
out of bounds memory access
0.007 Low
EPSS
Percentile
80.8%
The version of Google Chrome installed on the remote macOS host is prior to 114.0.5735.90. It is, therefore, affected by multiple vulnerabilities as referenced in the 2023_05_stable-channel-update-for-desktop_30 advisory.
-
Out of bounds write in Swiftshader. (CVE-2023-2929)
-
Use after free in Extensions. (CVE-2023-2930)
-
Use after free in PDF. (CVE-2023-2931, CVE-2023-2932, CVE-2023-2933)
-
Out of bounds memory access in Mojo. (CVE-2023-2934)
-
Type Confusion in V8. (CVE-2023-2935, CVE-2023-2936)
-
Inappropriate implementation in Picture In Picture. (CVE-2023-2937, CVE-2023-2938)
-
Insufficient data validation in Installer. (CVE-2023-2939)
-
Inappropriate implementation in Downloads. (CVE-2023-2940)
-
Inappropriate implementation in Extensions API. (CVE-2023-2941)
Note that Nessus has not tested for these issues but has instead relied only on the applicationβs self-reported version number.
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##
include('compat.inc');
if (description)
{
script_id(176495);
script_version("1.5");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/07/07");
script_cve_id(
"CVE-2023-2929",
"CVE-2023-2930",
"CVE-2023-2931",
"CVE-2023-2932",
"CVE-2023-2933",
"CVE-2023-2934",
"CVE-2023-2935",
"CVE-2023-2936",
"CVE-2023-2937",
"CVE-2023-2938",
"CVE-2023-2939",
"CVE-2023-2940",
"CVE-2023-2941"
);
script_xref(name:"IAVA", value:"2023-A-0270-S");
script_name(english:"Google Chrome < 114.0.5735.90 Multiple Vulnerabilities");
script_set_attribute(attribute:"synopsis", value:
"A web browser installed on the remote macOS host is affected by multiple vulnerabilities.");
script_set_attribute(attribute:"description", value:
"The version of Google Chrome installed on the remote macOS host is prior to 114.0.5735.90. It is, therefore, affected by
multiple vulnerabilities as referenced in the 2023_05_stable-channel-update-for-desktop_30 advisory.
- Out of bounds write in Swiftshader. (CVE-2023-2929)
- Use after free in Extensions. (CVE-2023-2930)
- Use after free in PDF. (CVE-2023-2931, CVE-2023-2932, CVE-2023-2933)
- Out of bounds memory access in Mojo. (CVE-2023-2934)
- Type Confusion in V8. (CVE-2023-2935, CVE-2023-2936)
- Inappropriate implementation in Picture In Picture. (CVE-2023-2937, CVE-2023-2938)
- Insufficient data validation in Installer. (CVE-2023-2939)
- Inappropriate implementation in Downloads. (CVE-2023-2940)
- Inappropriate implementation in Extensions API. (CVE-2023-2941)
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://crbug.com/1410191");
script_set_attribute(attribute:"see_also", value:"https://crbug.com/1443401");
script_set_attribute(attribute:"see_also", value:"https://crbug.com/1444238");
script_set_attribute(attribute:"see_also", value:"https://crbug.com/1444581");
script_set_attribute(attribute:"see_also", value:"https://crbug.com/1445426");
script_set_attribute(attribute:"see_also", value:"https://crbug.com/1429720");
script_set_attribute(attribute:"see_also", value:"https://crbug.com/1440695");
script_set_attribute(attribute:"see_also", value:"https://crbug.com/1443452");
script_set_attribute(attribute:"see_also", value:"https://crbug.com/1413813");
script_set_attribute(attribute:"see_also", value:"https://crbug.com/1416350");
script_set_attribute(attribute:"see_also", value:"https://crbug.com/1427431");
script_set_attribute(attribute:"see_also", value:"https://crbug.com/1426807");
script_set_attribute(attribute:"see_also", value:"https://crbug.com/1430269");
# https://chromereleases.googleblog.com/2023/05/stable-channel-update-for-desktop_30.html
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?b14a3c61");
script_set_attribute(attribute:"solution", value:
"Upgrade to Google Chrome version 114.0.5735.90 or later.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-2936");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2023/05/30");
script_set_attribute(attribute:"patch_publication_date", value:"2023/05/30");
script_set_attribute(attribute:"plugin_publication_date", value:"2023/05/30");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:google:chrome");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_set_attribute(attribute:"stig_severity", value:"I");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"MacOS X Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("macosx_google_chrome_installed.nbin");
script_require_keys("MacOSX/Google Chrome/Installed");
exit(0);
}
include('google_chrome_version.inc');
get_kb_item_or_exit('MacOSX/Google Chrome/Installed');
google_chrome_check_version(fix:'114.0.5735.90', severity:SECURITY_HOLE, xss:FALSE, xsrf:FALSE);
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2929
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2930
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2931
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2932
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2933
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2934
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2935
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2936
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2937
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2938
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2939
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2940
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2941
www.nessus.org/u?b14a3c61
crbug.com/1410191
crbug.com/1413813
crbug.com/1416350
crbug.com/1426807
crbug.com/1427431
crbug.com/1429720
crbug.com/1430269
crbug.com/1440695
crbug.com/1443401
crbug.com/1443452
crbug.com/1444238
crbug.com/1444581
crbug.com/1445426
Related
nessus
nessus
FreeBSD : chromium -- multiple vulnerabilities (fd87a250-ff78-11ed-8290-a8a1599412c6)
2023-05-31 00:00:00
Google Chrome < 114.0.5735.90 Multiple Vulnerabilities
2023-05-30 00:00:00
Google Chrome < 114.0.5735.91 Multiple Vulnerabilities
2023-05-30 00:00:00
openvas
openvas
debian
debian
[SECURITY] [DSA 5418-1] chromium security update
2023-06-03 14:12:04
freebsd
freebsd
chromium -- multiple vulnerabilities
2023-05-30 00:00:00
electron24 -- multiple vulnerabilities
2023-06-14 00:00:00
electron23 -- multiple vulnerabilities
2023-06-14 00:00:00
osv
osv
chromium - security update
2023-06-03 00:00:00
CVE-2023-2932
2023-05-30 22:15:10
CVE-2023-2935
2023-05-30 22:15:10
chrome
chrome
Stable Channel Update for Desktop
2023-05-30 00:00:00
kaspersky
kaspersky
KLA49377 Multiple vulnerabilities in Microsoft Browser
2023-06-02 00:00:00
KLA49331 Multiple vulnerabilities in Google Chrome
2023-05-30 00:00:00
alpinelinux
alpinelinux
cvelist
cvelist
nvd
nvd
veracode
veracode
Authorization Bypass
2023-08-07 01:17:57
Use-After-Free
2023-07-10 12:08:28
Privilege Escalation
2023-08-07 01:17:47
cve
cve
prion
prion
Input validation
2023-05-30 22:15:00
Design/Logic Flaw
2023-05-30 22:15:00
Type confusion
2023-05-30 22:15:00
cnvd
cnvd
Google Chrome Security Bypass Vulnerability (CNVD-2023-46111)
2023-05-31 00:00:00
Google Chrome Installer Component Security Bypass Vulnerability
2023-05-31 00:00:00
Google Chrome V8 Component Code Execution Vulnerability (CNVD-2023-46117)
2023-05-31 00:00:00
ubuntucve
ubuntucve
mscve
mscve
Chromium: CVE-2023-2931 Use after free in PDF
2023-06-02 07:00:00
Chromium: CVE-2023-2941 Inappropriate implementation in Extensions API
2023-06-02 07:00:00
Chromium: CVE-2023-2937 Inappropriate implementation in Picture In Picture
2023-06-02 07:00:00
debiancve
debiancve
packetstorm
packetstorm
Chrome v8::internal::Object::SetPropertyWithAccessor Type Confusion
2023-06-30 00:00:00
Chrome V8 Type Confusion
2023-06-30 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - June 2023
2023-06-13 20:49:27
github
github
gentoo
gentoo
QtWebEngine: Multiple Vulnerabilities
2023-11-25 00:00:00
Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities
2024-01-31 00:00:00
ics
ics
Siemens COMOS
2023-11-16 12:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: chromium-115.0.5790.110-1.fc38
2023-08-10 00:42:33
[SECURITY] Fedora 37 Update: chromium-115.0.5790.110-1.fc37
2023-08-04 01:30:07
redos
redos
ROS-20240328-08
2024-03-28 00:00:00