Search for vulnerabilities
Vulnerability details: VCID-2ueh-vbzc-r3fq
Vulnerability ID VCID-2ueh-vbzc-r3fq
Aliases CVE-2023-3598
Summary Out of bounds read and write in ANGLE in Google Chrome prior to 114.0.5735.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Status Published
Exploitability 0.5
Weighted Severity 7.9
Risk 4.0
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-787 Out-of-bounds Write
System Score Found at
epss 0.00534 https://api.first.org/data/v1/epss?cve=CVE-2023-3598
epss 0.00534 https://api.first.org/data/v1/epss?cve=CVE-2023-3598
epss 0.00534 https://api.first.org/data/v1/epss?cve=CVE-2023-3598
epss 0.00534 https://api.first.org/data/v1/epss?cve=CVE-2023-3598
epss 0.00534 https://api.first.org/data/v1/epss?cve=CVE-2023-3598
epss 0.00534 https://api.first.org/data/v1/epss?cve=CVE-2023-3598
epss 0.00534 https://api.first.org/data/v1/epss?cve=CVE-2023-3598
epss 0.00534 https://api.first.org/data/v1/epss?cve=CVE-2023-3598
epss 0.00534 https://api.first.org/data/v1/epss?cve=CVE-2023-3598
epss 0.00534 https://api.first.org/data/v1/epss?cve=CVE-2023-3598
epss 0.00534 https://api.first.org/data/v1/epss?cve=CVE-2023-3598
epss 0.00534 https://api.first.org/data/v1/epss?cve=CVE-2023-3598
epss 0.00534 https://api.first.org/data/v1/epss?cve=CVE-2023-3598
epss 0.00534 https://api.first.org/data/v1/epss?cve=CVE-2023-3598
epss 0.00534 https://api.first.org/data/v1/epss?cve=CVE-2023-3598
epss 0.00534 https://api.first.org/data/v1/epss?cve=CVE-2023-3598
epss 0.00534 https://api.first.org/data/v1/epss?cve=CVE-2023-3598
epss 0.00534 https://api.first.org/data/v1/epss?cve=CVE-2023-3598
epss 0.00534 https://api.first.org/data/v1/epss?cve=CVE-2023-3598
cvssv3.1 8.8 https://nvd.nist.gov/vuln/detail/CVE-2023-3598
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2023-3598
https://crbug.com/1427865
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2929
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2930
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2931
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2932
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2933
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2934
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2935
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2936
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2937
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2938
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2939
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2940
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2941
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3598
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
CVE-2023-3598 https://nvd.nist.gov/vuln/detail/CVE-2023-3598
No exploits are available.
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2023-3598
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.6639
EPSS Score 0.00534
Published At July 30, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2025-07-31T12:35:37.348469+00:00 EPSS Importer Import https://epss.cyentia.com/epss_scores-current.csv.gz 37.0.0