Lucene search
Ubuntu.comUB:CVE-2023-5187HistorySep 28, 2023 - 12:00 a.m.
CVE-2023-5187
2023-09-2800:00:00
ubuntu.com
ubuntu.com
16
cve-2023-5187
extensions
heap corruption
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
34.2%
Use after free in Extensions in Google Chrome prior to 117.0.5938.132
allowed an attacker who convinced a user to install a malicious extension
to potentially exploit heap corruption via a crafted HTML page. (Chromium
security severity: High)
Notes
| Author | Note |
|---|---|
| alexmurray | The Debian chromium source package is called chromium-browser in Ubuntu |
| mdeslaur | starting with Ubuntu 19.10, the chromium-browser package is just a script that installs the Chromium snap |
Related
cvelist
cvelist
CVE-2023-5187
2023-09-28 15:23:18
cve
cve
CVE-2023-5187
2023-09-28 16:15:10
nessus
nessus
FreeBSD : electron25 -- Use after free in extensions vulnerability (4281b712-ad6b-4c21-8f66-619a9150691f)
2023-10-12 00:00:00
Google Chrome < 117.0.5938.132 Multiple Vulnerabilities
2023-09-27 00:00:00
Google Chrome < 117.0.5938.132 Multiple Vulnerabilities
2023-09-27 00:00:00
veracode
veracode
Use After Free
2023-10-08 08:09:40
mscve
mscve
Chromium: CVE-2023-5187 Use after free in Extensions
2023-09-29 16:25:43
osv
osv
CVE-2023-5187
2023-09-28 16:15:10
ungoogled-chromium-117.0.5938.132-1.1 on GA media
2024-06-15 00:00:00
chromium - security update
2023-09-29 00:00:00
debiancve
debiancve
CVE-2023-5187
2023-09-28 16:15:10
freebsd
freebsd
electron25 -- Use after free in extensions vulnerability
2023-10-11 00:00:00
chromium -- multiple vulnerabilities
2023-09-27 00:00:00
prion
prion
Design/Logic Flaw
2023-09-28 16:15:00
nvd
nvd
CVE-2023-5187
2023-09-28 16:15:10
kaspersky
kaspersky
KLA60816 Multiple vulnerabilities in Google Chrome
2023-09-27 00:00:00
KLA61313 Multiple vulnerabilities in Opera
2023-10-03 00:00:00
KLA61043 Multiple vulnerabilities in Microsoft Browser
2023-09-29 00:00:00
openvas
openvas
Google Chrome Security Update (stable-channel-update-for-desktop_27-2023-09) - Linux
2023-10-04 00:00:00
openSUSE: Security Advisory for opera (openSUSE-SU-2023:0297-1)
2024-03-04 00:00:00
openSUSE: Security Advisory for opera (openSUSE-SU-2023:0298-1)
2024-03-04 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2023-09-27 00:00:00
debian
debian
[SECURITY] [DSA 5508-1] chromium security update
2023-09-29 17:54:25
hivepro
hivepro
Google and Firefox fixes Zero-Day Flaw Exploited in the Wild
2023-10-02 06:29:28
fedora
fedora
[SECURITY] Fedora 37 Update: chromium-117.0.5938.132-1.fc37
2023-10-02 00:40:35
[SECURITY] Fedora 38 Update: chromium-117.0.5938.132-2.fc38
2023-10-02 01:24:41
[SECURITY] Fedora 39 Update: chromium-117.0.5938.132-2.fc39
2023-10-02 00:16:32
mageia
mageia
Updated chromium-browser-stable package fixes bugs and vulnerabilities
2023-10-03 13:53:29
photon
photon
Critical Photon OS Security Update - PHSA-2023-5.0-0160
2023-12-01 00:00:00
Important Photon OS Security Update - PHSA-2023-4.0-0459
2023-08-28 00:00:00
gentoo
gentoo
Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities
2024-01-31 00:00:00
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
34.2%
Related for UB:CVE-2023-5187