Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.MACOSX_GOOGLE_CHROME_116_0_5845_110.NASL
HistoryAug 24, 2023 - 12:00 a.m.

Google Chrome < 116.0.5845.110 Multiple Vulnerabilities

2023-08-2400:00:00
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
12
use after free
out of bounds memory access
heap corruption
crafted html page
google chrome vulnerability
JSON

The version of Google Chrome installed on the remote macOS host is prior to 116.0.5845.110. It is, therefore, affected by multiple vulnerabilities as referenced in the 2023_08_chrome-desktop-stable-update advisory.

  • Use after free in Vulkan in Google Chrome prior to 116.0.5845.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) (CVE-2023-4430)

  • Use after free in Loader in Google Chrome prior to 116.0.5845.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) (CVE-2023-4429)

  • Out of bounds memory access in CSS in Google Chrome prior to 116.0.5845.110 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High) (CVE-2023-4428)

  • Out of bounds memory access in V8 in Google Chrome prior to 116.0.5845.110 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High) (CVE-2023-4427)

  • Out of bounds memory access in Fonts in Google Chrome prior to 116.0.5845.110 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Medium) (CVE-2023-4431)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(180162);
  script_version("1.7");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/10/06");

  script_cve_id(
    "CVE-2023-4427",
    "CVE-2023-4428",
    "CVE-2023-4429",
    "CVE-2023-4430",
    "CVE-2023-4431"
  );
  script_xref(name:"IAVA", value:"2023-A-0447-S");

  script_name(english:"Google Chrome < 116.0.5845.110 Multiple Vulnerabilities");

  script_set_attribute(attribute:"synopsis", value:
"A web browser installed on the remote macOS host is affected by multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The version of Google Chrome installed on the remote macOS host is prior to 116.0.5845.110. It is, therefore, affected
by multiple vulnerabilities as referenced in the 2023_08_chrome-desktop-stable-update advisory.

  - Use after free in Vulkan in Google Chrome prior to 116.0.5845.110 allowed a remote attacker to potentially
    exploit heap corruption via a crafted HTML page. (Chromium security severity: High) (CVE-2023-4430)

  - Use after free in Loader in Google Chrome prior to 116.0.5845.110 allowed a remote attacker to potentially
    exploit heap corruption via a crafted HTML page. (Chromium security severity: High) (CVE-2023-4429)

  - Out of bounds memory access in CSS in Google Chrome prior to 116.0.5845.110 allowed a remote attacker to
    perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)
    (CVE-2023-4428)

  - Out of bounds memory access in V8 in Google Chrome prior to 116.0.5845.110 allowed a remote attacker to
    perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)
    (CVE-2023-4427)

  - Out of bounds memory access in Fonts in Google Chrome prior to 116.0.5845.110 allowed a remote attacker to
    perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Medium)
    (CVE-2023-4431)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  # https://chromereleases.googleblog.com/2023/08/chrome-desktop-stable-update.html
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?839a3ccf");
  script_set_attribute(attribute:"see_also", value:"https://crbug.com/1469542");
  script_set_attribute(attribute:"see_also", value:"https://crbug.com/1469754");
  script_set_attribute(attribute:"see_also", value:"https://crbug.com/1470477");
  script_set_attribute(attribute:"see_also", value:"https://crbug.com/1470668");
  script_set_attribute(attribute:"see_also", value:"https://crbug.com/1469348");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Google Chrome version 116.0.5845.110 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-4430");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2023/08/22");
  script_set_attribute(attribute:"patch_publication_date", value:"2023/08/22");
  script_set_attribute(attribute:"plugin_publication_date", value:"2023/08/24");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:google:chrome");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"MacOS X Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("macosx_google_chrome_installed.nbin");
  script_require_keys("MacOSX/Google Chrome/Installed");

  exit(0);
}
include('google_chrome_version.inc');

get_kb_item_or_exit('MacOSX/Google Chrome/Installed');

google_chrome_check_version(fix:'116.0.5845.110', severity:SECURITY_HOLE, xss:FALSE, xsrf:FALSE);
VendorProductVersionCPE
googlechromecpe:/a:google:chrome

Related

nessus 11
kaspersky 2
chrome 1
openvas 9
malwarebytes 1
freebsd 4
mageia 1
fedora 3
veracode 5
prion 5
cve 5
debiancve 5
cvelist 5
mscve 5
ubuntucve 5
gentoo 1
nessus
nessus
FreeBSD : chromium -- multiple vulnerabilities (5fa332b9-4269-11ee-8290-a8a1599412c6)
2023-08-24 00:00:00
Google Chrome < 116.0.5845.110 Multiple Vulnerabilities
2023-08-24 00:00:00
Debian DSA-5483-1 : chromium - security update
2023-08-26 00:00:00
kaspersky
kaspersky
KLA52396 Multiple vulnerabilities in Google Chrome
2023-08-22 00:00:00
KLA52555 Multiple vulnerabilities in Microsoft Browser
2023-08-25 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2023-08-22 00:00:00
openvas
openvas
Google Chrome Security Update (chrome-desktop-stable-update-2023-08) - Mac OS X
2023-08-23 00:00:00
Debian: Security Advisory (DSA-5483-1)
2023-08-28 00:00:00
Google Chrome Security Update (chrome-desktop-stable-update-2023-08) - Linux
2023-08-23 00:00:00
malwarebytes
malwarebytes
Update now! Google Chrome's first weekly update has arrived
2023-08-25 18:15:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2023-08-22 00:00:00
electron25 -- multiple vulnerabilities
2023-08-30 00:00:00
electron24 -- multiple vulnerabilities
2023-08-30 00:00:00
mageia
mageia
Updated chromium-browser-stable packages fix security vulnerability
2023-09-11 16:07:54
fedora
fedora
[SECURITY] Fedora 39 Update: chromium-116.0.5845.179-1.fc39
2023-09-15 19:08:58
[SECURITY] Fedora 38 Update: chromium-117.0.5938.62-1.fc38
2023-09-18 01:25:57
[SECURITY] Fedora 37 Update: chromium-117.0.5938.88-1.fc37
2023-09-21 01:22:25
veracode
veracode
Out-Of-Bounds Memory Access
2023-08-30 15:14:31
Out-Of-Bounds Memory Access
2023-08-30 15:33:27
Out-Of-Bounds Memory Access
2023-08-30 15:14:34
prion
prion
Design/Logic Flaw
2023-08-23 00:15:00
Out-of-bounds
2023-08-23 00:15:00
Design/Logic Flaw
2023-08-23 00:15:00
cve
cve
CVE-2023-4427
2023-08-23 00:15:09
CVE-2023-4431
2023-08-23 00:15:09
CVE-2023-4429
2023-08-23 00:15:09
debiancve
debiancve
CVE-2023-4427
2023-08-23 00:15:09
CVE-2023-4430
2023-08-23 00:15:09
CVE-2023-4429
2023-08-23 00:15:09
cvelist
cvelist
CVE-2023-4431
2023-08-22 23:56:14
CVE-2023-4427
2023-08-22 23:56:13
CVE-2023-4428
2023-08-22 23:56:13
mscve
mscve
Chromium: CVE-2023-4431: Out of bounds memory access in Fonts
2023-08-25 07:00:50
Chromium: CVE-2023-4430: Use after free in Vulkan
2023-08-25 07:00:46
Chromium: CVE-2023-4429: Use after free in Loader
2023-08-25 07:00:43
ubuntucve
ubuntucve
CVE-2023-4430
2023-08-23 00:00:00
CVE-2023-4427
2023-08-23 00:00:00
CVE-2023-4431
2023-08-23 00:00:00
gentoo
gentoo
Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities
2024-01-31 00:00:00
JSON
Related for MACOSX_GOOGLE_CHROME_116_0_5845_110.NASL
nessus11kaspersky2chrome1openvas9malwarebytes1freebsd4mageia1fedora3veracode5prion5cve5debiancve5cvelist5mscve5ubuntucve5gentoo1