CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
Percentile
81.1%
chromium is vulnerable to Denial Of Service (DoS). The vulnerability exists due to the heap buffer overflow in the Visuals in the library, which allows an attacker to exploit heap corruption via a crafted HTML page.
chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop.html
crbug.com/1458819
lists.fedoraproject.org/archives/list/[email protected]/message/PQKT7EGDD2P3L7S3NXEDDRCPK4NNZNWJ/
security-tracker.debian.org/tracker/CVE-2023-4071
security.gentoo.org/glsa/202311-11
security.gentoo.org/glsa/202312-07
security.gentoo.org/glsa/202401-34
www.debian.org/security/2023/dsa-5467