Detections
Analytics

CVE-2023-3079

high

Description

Type confusion in V8 in Google Chrome prior to 114.0.5735.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

References

https://medium.com/@vr-blog/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=fd4b732155e0&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=ec84f072223d&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=e8f88a712c88&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=e6efc3ea52fd&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=e1fc22118da5&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=d931a7ea2446&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=d22ffc6a4d11&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=cf860b6c7a79&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=cd82045a2e2d&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=c779fc42ad15&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=c61feae4a22e&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=c344078c0be6&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=b90eefbec252&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=b78c63f834f1&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=b6bf2e016989&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=b6994cd3e83d&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=b57d9c6a0c8b&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=b422e8491d2c&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=b3c6719fe630&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=a8bdaf0ca0d8&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=a4cd0b19e69e&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=a4a2025a43a3&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=a193b4d0138c&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=a032b18916aa&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=9bed1a2ce823&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=99f5bbd2cd66&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=97da7d16c498&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=9703312c73c9&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=95463a2a03cf&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=92c689e80890&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=847c3dce86f0&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=8317606fc2d5&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=80c8e2f51e4e&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=7fb0ce27e7b7&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=77d8fe105a72&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=66a5ac0b6308&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=60600c4302bf&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=5cf5dc610252&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=599a38b6e9a7&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=578db4bd9035&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=46c4989ecc20&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=42c942c8cb4e&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=3aaa832fbf0a&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=38a79676e1d1&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=2eb5c261d074&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=2aa8c2ddaf48&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=282dbf1181eb&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=19c65269a076&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=158ebae73542&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=139df4c70db2&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=1111c404e932&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=0ab9793a6f28&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=0a5be4d8d6b7&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=069e21c8f88c&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=03f58bfed3fd&source=rss------exploit-5

https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b?gi=01193def979d&source=rss------exploit-5

https://www.debian.org/security/2023/dsa-5420

https://www.couchbase.com/alerts/

https://security.gentoo.org/glsa/202401-34

https://security.gentoo.org/glsa/202311-11

https://lists.fedoraproject.org/archives/list/[email protected]/message/U4OXTNIZY4JYHJT7CVLPAJQILI6BISVM/

https://lists.fedoraproject.org/archives/list/[email protected]/message/DYTXO5E3FI3I2ETDP3HF4SHYYTFMKMIC/

https://crbug.com/1450481

https://chromereleases.googleblog.com/2023/06/stable-channel-update-for-desktop.html

http://packetstormsecurity.com/files/176212/Chrome-V8-Type-Confusion-New-Sandbox-Escape.html

http://packetstormsecurity.com/files/176211/Chrome-V8-Type-Confusion.html

Details

Source: Mitre, NVD

Published: 2023-06-05

Updated: 2024-01-31

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: High

CVSS v3

Base Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Severity: High