Microsoft Edge (Chromium) < 109.0.1518.100 (CVE-2023-2033)

The version of Microsoft Edge Chromium installed on the remote Windows host is prior to 109.0.1518.100. It is, therefore, affected by a type confusion vulnerability in V8 as referenced in the April 24, 2023 advisory. Note that Nessus has not tested for these issues but has instead relied only on...

openSUSE: Security Advisory for chromium (openSUSE-SU-2023:0092-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Zero-Day Alert: Google Chrome Under Active Attack, Exploiting New Vulnerability

Google has rolled out security updates to fix seven security issues in its Chrome browser, including a zero-day that has come under active exploitation in the wild. Tracked as CVE-2023-6345, the high-severity vulnerability has been described as an integer overflow bug in Skia, an open source 2D...

Security fix for the ALT Linux 10 package yandex-browser-stable version 23.3.1.946-alt1

23.3.1.946-alt1 built May 4, 2023 Yandex Browser Team in task 319296 April 25, 2023 Yandex Browser Team - Browser updated to 23.3.1.946 + Critical CVE-2023-2033: Type confusion in V8...

The Bug Report – April 2023 Edition

The Bug Report – April 2023 Edition By Trellix · May 03, 2023 This story was also written by John Rodriguez. It’s never easy coming back. Why am I here? Seems as if some of us should have stayed at our tropical vacation getaway. Nothing like coming back to the cyber world screeching about...

Fedora 38 : chromium (2023-911c060ded)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-911c060ded advisory. update to 112.0.5615.165. Fixes the following security issues: CVE-2023-2004 CVE-2023-2133 CVE-2023-2134 CVE-2023-2135 CVE-2023-2136 CVE-2023-2137...

KLA49064 Multiple vulnerabilities in Opera

Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Type confusion vulnerability in V8 can be exploited to cause denial of service. 2. Heap buffer overfl...

Fedora 37 : chromium (2023-8cc9731416)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-8cc9731416 advisory. update to 112.0.5615.121. Fixes the following security issues: CVE-2023-2004 CVE-2023-2133 CVE-2023-2134 CVE-2023-2135 CVE-2023-2136 CVE-2023-2137...

Microsoft Edge (Chromium-Based) Type Confusion Vulnerability (Apr 2023)

Microsoft Edge Chromium-Based is prone to a type confusion vulnerability SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2023:0092-1 Rating: important References: 1210126 1210478 Cross-References: CVE-2023-1810 CVE-2023-1811 CVE-2023-1812 CVE-2023-1813 CVE-2023-1814 CVE-2023-1815 CVE-2023-1816 CVE-2023-1817 CVE-2023-1818 CVE-2023-18...

Google Chrome Security Update (stable-channel-update-for-desktop_14-2023-04) - Windows

Google Chrome is prone to type confusion vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome";...

Google Chrome Emergency Update Fixes Zero-Day Exploit in the Wild

Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary A potential vulnerability in Google Chrome versions before 112.0.5615.121, identified as CVE-2023-2033, involves Type confusion in V8, which could allow a remote attacker to potentially exploit he...

Update Chrome now! Google patches actively exploited flaw

In a recent security advisory, Google says it patched a high-severity zero-day security flaw in its Chrome browser--the first in 2023--currently being exploited in the wild by threat actors. The company urges all its Windows, Mac, and Linux users to update to version 112.0.5615.121 immediately, a...

Debian DSA-5390-1 : chromium - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-5390 advisory. Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code. For the stable distribution bullseye, this problem has been...

Vulnerabilities fixed in Google Chrome

Google has fixed two vulnerabilities in Chrome. No CVE ID has been disclosed of one of the vulnerabilities. The vulnerability with attribute CVE-2023-2033 allows a malicious person remotely able to cause a denial-of-service, or to execute arbitrary code in the context of the browser of the victim...

Chromium: CVE-2023-2033 Type Confusion in V8

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. Google is aware that an exploit for CVE-2023-2033 exists in the wild...

Google Releases Urgent Chrome Update to Fix Actively Exploited Zero-Day Vulnerability

Google on Friday released out-of-band updates to resolve an actively exploited zero-day flaw in its Chrome web browser, making it the first such bug to be addressed since the start of the year. Tracked as CVE-2023-2033, the high-severity vulnerability has been described as a type confusion issue ...

CVE-2023-2033

creationtimestamp| type| source ---|---|--- 2023-04-14 22:26:08+00:00| seen| https://t.me/cibsecurity/62179 2023-04-15 11:25:53+00:00| exploited| Telegram/QAczKYY1AjlKpyXyD7J422tVel4nX10bghdW00h3kJEqUmA 2023-04-15 16:33:23+00:00| exploited| https://t.me/crackcodes/3233 2023-04-16 11:14:57+00:00|...

CVE-2023-2033

Type confusion in V8 in Google Chrome prior to 112.0.5615.121 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

CVE-2023-2033

Type confusion in V8 in Google Chrome prior to 112.0.5615.121 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...