Detections
Analytics
Microsoft Edge (Chromium) < 114.0.1823.106 / 115.0.1901.200 Multiple Vulnerabilities
high Nessus Plugin ID 179408
Language:
Synopsis
The remote host has an web browser installed that is affected by multiple vulnerabilities.Description
The version of Microsoft Edge installed on the remote Windows host is prior to 114.0.1823.106 / 115.0.1901.200. It is, therefore, affected by multiple vulnerabilities as referenced in the August 7, 2023 advisory.- Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability (CVE-2023-38157)
- Type Confusion in V8 in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High) (CVE-2023-4068, CVE-2023-4070)
- Type Confusion in V8 in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) (CVE-2023-4069)
- Heap buffer overflow in Visuals in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) (CVE-2023-4071)
- Out of bounds read and write in WebGL in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) (CVE-2023-4072)
- Out of bounds memory access in ANGLE in Google Chrome on Mac prior to 115.0.5790.170 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity:
High) (CVE-2023-4073)
- Use after free in Blink Task Scheduling in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) (CVE-2023-4074)
- Use after free in Cast in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) (CVE-2023-4075)
- Use after free in WebRTC in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to potentially exploit heap corruption via a crafted WebRTC session. (Chromium security severity: High) (CVE-2023-4076)
- Insufficient data validation in Extensions in Google Chrome prior to 115.0.5790.170 allowed an attacker who convinced a user to install a malicious extension to inject scripts or HTML into a privileged page via a crafted Chrome Extension. (Chromium security severity: Medium) (CVE-2023-4077)
- Inappropriate implementation in Extensions in Google Chrome prior to 115.0.5790.170 allowed an attacker who convinced a user to install a malicious extension to inject scripts or HTML into a privileged page via a crafted Chrome Extension. (Chromium security severity: Medium) (CVE-2023-4078)
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.
Solution
Upgrade to Microsoft Edge version 114.0.1823.106 / 115.0.1901.200 or later.See Also
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-38157
http://www.nessus.org/u?ccceaa60
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4068
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4069
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4070
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4071
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4072
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4073
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4074
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4075
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4076
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4077
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4078
Plugin Details
Severity: High
ID: 179408
File Name: microsoft_edge_chromium_115_0_1901_200.nasl
Version: 1.4
Type: Local
Agent: windows
Family: Windows
Published: 8/7/2023
Updated: 6/16/2026
Supported Sensors: Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: Critical
Base Score: 10
Temporal Score: 7.4
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS Score Source: CVE-2023-4078
CVSS v3
Risk Factor: High
Base Score: 8.8
Temporal Score: 7.7
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:microsoft:edge
Required KB Items: installed_sw/Microsoft Edge (Chromium), SMB/Registry/Enumerated
Exploit Ease: No known exploits are available
Patch Publication Date: 8/7/2023
Vulnerability Publication Date: 8/2/2023
Reference Information
CVE: CVE-2023-38157, CVE-2023-4068, CVE-2023-4069, CVE-2023-4070, CVE-2023-4071, CVE-2023-4072, CVE-2023-4073, CVE-2023-4074, CVE-2023-4075, CVE-2023-4076, CVE-2023-4077, CVE-2023-4078
IAVA: 2023-A-0401-S