CVE-2023-3079
CVE-2023-3079
In short
A type confusion bug in Chrome's V8 JavaScript engine allows attackers to corrupt the browser's memory through a malicious webpage, potentially leading to crashes or code execution.
Technical detail
Type confusion vulnerability in V8 engine (CWE-843) exploitable via crafted HTML; remote attack vector requiring user to visit malicious page. Heap corruption can result in information disclosure or arbitrary code execution.
Summary generated and translated by AI from the official description.
Type confusion in V8 in Google Chrome prior to 114.0.5735.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected products
Google · Chromepublic PoCs found — 3
githubgithub.com/mistymntncop/CVE-2023-3079★ 130cve_referencepacketstormsecurity.com/files/176211/Chrome-V8-Type-Confusion.htmlunverifiedcve_referencepacketstormsecurity.com/files/176212/Chrome-V8-Type-Confusion-New-Sandbox-Escape.htmlunverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://packetstormsecurity.com/files/176211/Chrome-V8-Type-Confusion.htmlhttp://packetstormsecurity.com/files/176212/Chrome-V8-Type-Confusion-New-Sandbox-Escape.htmlhttps://chromereleases.googleblog.com/2023/06/stable-channel-update-for-desktop.htmlhttps://crbug.com/1450481https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DYTXO5E3FI3I2ETDP3HF4SHYYTFMKMIC/https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U4OXTNIZY4JYHJT7CVLPAJQILI6BISVM/https://security.gentoo.org/glsa/202311-11https://security.gentoo.org/glsa/202401-34https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-3079https://www.couchbase.com/alerts/https://www.debian.org/security/2023/dsa-5420