Search for vulnerabilities
Vulnerability details: VCID-4pm2-g2qa-y3dr
Vulnerability ID VCID-4pm2-g2qa-y3dr
Aliases CVE-2023-2936
Summary Type Confusion in V8 in Google Chrome prior to 114.0.5735.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Status Published
Exploitability 0.5
Weighted Severity 7.9
Risk 4.0
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-843 Access of Resource Using Incompatible Type ('Type Confusion')
System Score Found at
epss 0.07628 https://api.first.org/data/v1/epss?cve=CVE-2023-2936
epss 0.07628 https://api.first.org/data/v1/epss?cve=CVE-2023-2936
epss 0.07628 https://api.first.org/data/v1/epss?cve=CVE-2023-2936
epss 0.07628 https://api.first.org/data/v1/epss?cve=CVE-2023-2936
epss 0.07628 https://api.first.org/data/v1/epss?cve=CVE-2023-2936
epss 0.07628 https://api.first.org/data/v1/epss?cve=CVE-2023-2936
epss 0.07628 https://api.first.org/data/v1/epss?cve=CVE-2023-2936
epss 0.07628 https://api.first.org/data/v1/epss?cve=CVE-2023-2936
epss 0.07628 https://api.first.org/data/v1/epss?cve=CVE-2023-2936
epss 0.07628 https://api.first.org/data/v1/epss?cve=CVE-2023-2936
epss 0.07628 https://api.first.org/data/v1/epss?cve=CVE-2023-2936
epss 0.07628 https://api.first.org/data/v1/epss?cve=CVE-2023-2936
epss 0.07628 https://api.first.org/data/v1/epss?cve=CVE-2023-2936
epss 0.07628 https://api.first.org/data/v1/epss?cve=CVE-2023-2936
epss 0.07628 https://api.first.org/data/v1/epss?cve=CVE-2023-2936
epss 0.07628 https://api.first.org/data/v1/epss?cve=CVE-2023-2936
epss 0.07628 https://api.first.org/data/v1/epss?cve=CVE-2023-2936
epss 0.07628 https://api.first.org/data/v1/epss?cve=CVE-2023-2936
epss 0.07628 https://api.first.org/data/v1/epss?cve=CVE-2023-2936
epss 0.07628 https://api.first.org/data/v1/epss?cve=CVE-2023-2936
epss 0.07628 https://api.first.org/data/v1/epss?cve=CVE-2023-2936
cvssv3.1 8.8 https://nvd.nist.gov/vuln/detail/CVE-2023-2936
Reference id Reference type URL
http://packetstormsecurity.com/files/173197/Chrome-V8-Type-Confusion.html
https://api.first.org/data/v1/epss?cve=CVE-2023-2936
https://crbug.com/1443452
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2929
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2930
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2931
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2932
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2933
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2934
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2935
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2936
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2937
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2938
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2939
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2940
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2941
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3598
https://security.gentoo.org/glsa/202401-34
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
CVE-2023-2936 https://nvd.nist.gov/vuln/detail/CVE-2023-2936
No exploits are available.
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2023-2936
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.91475
EPSS Score 0.07628
Published At July 30, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2025-07-31T10:39:15.985210+00:00 NVD Importer Import https://nvd.nist.gov/vuln/detail/CVE-2023-2936 37.0.0