Attacker Value
Very High
(1 user assessed)
Exploitability
Very High
(1 user assessed)
User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
1

CVE-2023-0129

Exploited in the Wild
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

Heap buffer overflow in Network Service in Google Chrome prior to 109.0.5414.74 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page and specific interactions. (Chromium security severity: High)

General Information

Vendors

  • Google

Products

  • Chrome

Exploited in the Wild

Reported by:

Additional Info

Technical Analysis