CVSS: 10.0EPSS: 26%CPEs: 3EXPL: 1CVE-2023-6702 – Gentoo Linux Security Advisory 202402-14
https://notcve.org/view.php?id=CVE-2023-6702
14 Dec 2023 — Type confusion in V8 in Google Chrome prior to 120.0.6099.109 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) La confusión de tipos en V8 en Google Chrome anterior a 120.0.6099.109 permitía a un atacante remoto explotar potencialmente la corrupción del montón a través de una página HTML manipulada. (Severidad de seguridad de Chrome: alta) Multiple vulnerabilities have been discovered in Chromium and its derivatives, the worst of wh... • https://github.com/kaist-hacking/CVE-2023-6702 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2023-6703 – Gentoo Linux Security Advisory 202402-14
https://notcve.org/view.php?id=CVE-2023-6703
14 Dec 2023 — Use after free in Blink in Google Chrome prior to 120.0.6099.109 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Use After Free en Blink en Google Chrome anterior a 120.0.6099.109 permitía a un atacante remoto explotar potencialmente la corrupción del montón a través de una página HTML manipulada. (Severidad de seguridad de Chrome: alta) Multiple vulnerabilities have been discovered in Chromium and its derivatives, the worst of whi... • https://chromereleases.googleblog.com/2023/12/stable-channel-update-for-desktop_12.html • CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2023-6704 – Gentoo Linux Security Advisory 202402-14
https://notcve.org/view.php?id=CVE-2023-6704
14 Dec 2023 — Use after free in libavif in Google Chrome prior to 120.0.6099.109 allowed a remote attacker to potentially exploit heap corruption via a crafted image file. (Chromium security severity: High) Use After Free en libavif en Google Chrome anterior a 120.0.6099.109 permitía a un atacante remoto explotar potencialmente la corrupción del montón a través de un archivo de imagen manipulado. (Severidad de seguridad de Chrome: alta) Multiple vulnerabilities have been discovered in Chromium and its derivatives, the wo... • https://chromereleases.googleblog.com/2023/12/stable-channel-update-for-desktop_12.html • CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2023-6705 – Gentoo Linux Security Advisory 202402-14
https://notcve.org/view.php?id=CVE-2023-6705
14 Dec 2023 — Use after free in WebRTC in Google Chrome prior to 120.0.6099.109 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Use After Free en WebRTC en Google Chrome anterior a 120.0.6099.109 permitía a un atacante remoto explotar potencialmente la corrupción del montón a través de una página HTML manipulada. (Severidad de seguridad de Chrome: alta) Multiple vulnerabilities have been discovered in Chromium and its derivatives, the worst of w... • https://chromereleases.googleblog.com/2023/12/stable-channel-update-for-desktop_12.html • CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2023-6706 – Gentoo Linux Security Advisory 202402-14
https://notcve.org/view.php?id=CVE-2023-6706
14 Dec 2023 — Use after free in FedCM in Google Chrome prior to 120.0.6099.109 allowed a remote attacker who convinced a user to engage in specific UI interaction to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) El Use After Free en FedCM en Google Chrome anterior a 120.0.6099.109 permitía a un atacante remoto convencer a un usuario de participar en una interacción de interfaz de usuario específica para explotar potencialmente la corrupción del montón a través de una pági... • https://chromereleases.googleblog.com/2023/12/stable-channel-update-for-desktop_12.html • CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2023-6707 – Gentoo Linux Security Advisory 202402-14
https://notcve.org/view.php?id=CVE-2023-6707
14 Dec 2023 — Use after free in CSS in Google Chrome prior to 120.0.6099.109 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium) Use After Free en CSS en Google Chrome anterior a 120.0.6099.109 permitía a un atacante remoto explotar potencialmente la corrupción del montón a través de una página HTML manipulada. (Severidad de seguridad de Chromium: media) Multiple vulnerabilities have been discovered in Chromium and its derivatives, the worst of wh... • https://chromereleases.googleblog.com/2023/12/stable-channel-update-for-desktop_12.html • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2023-6512 – Gentoo Linux Security Advisory 202402-14
https://notcve.org/view.php?id=CVE-2023-6512
06 Dec 2023 — Inappropriate implementation in Web Browser UI in Google Chrome prior to 120.0.6099.62 allowed a remote attacker to potentially spoof the contents of an iframe dialog context menu via a crafted HTML page. (Chromium security severity: Low) La implementación inapropiada en la interfaz de usuario del navegador web en Google Chrome anterior a 120.0.6099.62 permitía a un atacante remoto falsificar potencialmente el contenido de un menú contextual de diálogo iframe a través de una página HTML manipulada. (Severid... • https://chromereleases.googleblog.com/2023/12/stable-channel-update-for-desktop.html •
CVSS: 5.0EPSS: 0%CPEs: 5EXPL: 0CVE-2023-6511 – Gentoo Linux Security Advisory 202402-14
https://notcve.org/view.php?id=CVE-2023-6511
06 Dec 2023 — Inappropriate implementation in Autofill in Google Chrome prior to 120.0.6099.62 allowed a remote attacker to bypass Autofill restrictions via a crafted HTML page. (Chromium security severity: Low) La implementación inapropiada de Autofill en Google Chrome anterior a 120.0.6099.62 permitió a un atacante remoto eludir las restricciones de Autocompletar a través de una página HTML manipulada. (Severidad de seguridad de Chrome: baja) Multiple vulnerabilities have been discovered in Chromium and its derivatives... • https://chromereleases.googleblog.com/2023/12/stable-channel-update-for-desktop.html •
CVSS: 10.0EPSS: 0%CPEs: 5EXPL: 0CVE-2023-6510 – Gentoo Linux Security Advisory 202402-14
https://notcve.org/view.php?id=CVE-2023-6510
06 Dec 2023 — Use after free in Media Capture in Google Chrome prior to 120.0.6099.62 allowed a remote attacker who convinced a user to engage in specific UI interaction to potentially exploit heap corruption via specific UI interaction. (Chromium security severity: Medium) Use after free en Media Capture en Google Chrome anterior a 120.0.6099.62 permitía a un atacante remoto convencer a un usuario de participar en una interacción de interfaz de usuario específica para explotar potencialmente la corrupción del heap a tra... • https://chromereleases.googleblog.com/2023/12/stable-channel-update-for-desktop.html • CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 5EXPL: 0CVE-2023-6509 – Gentoo Linux Security Advisory 202402-14
https://notcve.org/view.php?id=CVE-2023-6509
06 Dec 2023 — Use after free in Side Panel Search in Google Chrome prior to 120.0.6099.62 allowed a remote attacker who convinced a user to engage in specific UI interaction to potentially exploit heap corruption via specific UI interaction. (Chromium security severity: High) Use after free en Side Panel Search en Google Chrome anterior a 120.0.6099.62 permitía a un atacante remoto convencer a un usuario de participar en una interacción de interfaz de usuario específica para explotar potencialmente la corrupción del heap... • https://chromereleases.googleblog.com/2023/12/stable-channel-update-for-desktop.html • CWE-416: Use After Free •