CVE-2023-5481
- EPSS 0.2%
- Published 11.10.2023 23:15:10
- Last modified 21.11.2024 08:41:51
Inappropriate implementation in Downloads in Google Chrome prior to 118.0.5993.70 allowed a remote attacker to spoof security UI via a crafted HTML page. (Chromium security severity: Medium)
CVE-2023-5483
- EPSS 0.11%
- Published 11.10.2023 23:15:10
- Last modified 21.11.2024 08:41:51
Inappropriate implementation in Intents in Google Chrome prior to 118.0.5993.70 allowed a remote attacker to bypass content security policy via a crafted HTML page. (Chromium security severity: Medium)
CVE-2023-5484
- EPSS 0.31%
- Published 11.10.2023 23:15:10
- Last modified 21.11.2024 08:41:52
Inappropriate implementation in Navigation in Google Chrome prior to 118.0.5993.70 allowed a remote attacker to spoof security UI via a crafted HTML page. (Chromium security severity: Medium)
CVE-2023-5346
- EPSS 0.59%
- Published 05.10.2023 18:15:13
- Last modified 01.05.2025 20:15:35
Type confusion in V8 in Google Chrome prior to 117.0.5938.149 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2023-5186
- EPSS 1.54%
- Published 28.09.2023 16:15:10
- Last modified 21.11.2024 08:41:15
Use after free in Passwords in Google Chrome prior to 117.0.5938.132 allowed a remote attacker who convinced a user to engage in specific UI interaction to potentially exploit heap corruption via crafted UI interaction. (Chromium security severity: H...
CVE-2023-5187
- EPSS 0.28%
- Published 28.09.2023 16:15:10
- Last modified 21.11.2024 08:41:15
Use after free in Extensions in Google Chrome prior to 117.0.5938.132 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2023-5217
- EPSS 1.8%
- Published 28.09.2023 16:15:10
- Last modified 03.04.2025 18:55:36
Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior to 117.0.5938.132 and libvpx 1.13.1 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2023-4908
- EPSS 0.27%
- Published 12.09.2023 21:15:09
- Last modified 21.11.2024 08:36:14
Inappropriate implementation in Picture in Picture in Google Chrome prior to 117.0.5938.62 allowed a remote attacker to spoof security UI via a crafted HTML page. (Chromium security severity: Low)
CVE-2023-4909
- EPSS 0.27%
- Published 12.09.2023 21:15:09
- Last modified 21.11.2024 08:36:14
Inappropriate implementation in Interstitials in Google Chrome prior to 117.0.5938.62 allowed a remote attacker to obfuscate security UI via a crafted HTML page. (Chromium security severity: Low)
CVE-2023-4900
- EPSS 0.27%
- Published 12.09.2023 21:15:08
- Last modified 21.11.2024 08:36:13
Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 117.0.5938.62 allowed a remote attacker to obfuscate a permission prompt via a crafted HTML page. (Chromium security severity: Medium)