Lucene search

PRIOn knowledge basePRION:CVE-2023-6510

HistoryDec 06, 2023 - 2:15 a.m.

Design/Logic Flaw

2023-12-0602:15:00

PRIOn knowledge base

www.prio-n.com

google chrome

media capture

remote attacker

heap corruption

ui interaction

chromium

security severity

nvd

7.3 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

54.9%

JSON

Use after free in Media Capture in Google Chrome prior to 120.0.6099.62 allowed a remote attacker who convinced a user to engage in specific UI interaction to potentially exploit heap corruption via specific UI interaction. (Chromium security severity: Medium)

CPENameOperatorVersion
debian_linuxeq11.0
debian_linuxeq12.0
fedoraeq38
fedoraeq39
chromelt120.0.6099.62

Name	Operator	Version
debian_linux	eq	11.0
debian_linux	eq	12.0
fedora	eq	38
fedora	eq	39
chrome	lt	120.0.6099.62

References

chromereleases.googleblog.com/2023/12/stable-channel-update-for-desktop.html

crbug.com/1480152

lists.fedoraproject.org/archives/list/[email protected]/message/MMHY76AWPA46MAFXPWDGJX6FEGXZVR5Z/

lists.fedoraproject.org/archives/list/[email protected]/message/RI3UHCTFH6KWAJGDZ2TOLT6VHKW53WCC/

security.gentoo.org/glsa/202401-34

www.debian.org/security/2023/dsa-5573