Search for vulnerabilities
Vulnerability details: VCID-56c5-ufbw-aaad
Vulnerability ID VCID-56c5-ufbw-aaad
Aliases CVE-2023-1534
Summary Out of bounds read in ANGLE in Google Chrome prior to 111.0.5563.110 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Status Published
Exploitability 0.5
Weighted Severity 7.9
Risk 4.0
Affected and Fixed Packages Package Details
Weaknesses (2)
CWE-416 Use After Free
CWE-125 Out-of-bounds Read
System Score Found at
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00315 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00707 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00746 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00746 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00746 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00939 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.00988 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.01173 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.01173 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.01173 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.01173 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.01173 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.01173 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.01173 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.01173 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.01173 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
epss 0.01173 https://api.first.org/data/v1/epss?cve=CVE-2023-1534
cvssv3 8.8 https://nvd.nist.gov/vuln/detail/CVE-2023-1534
cvssv3.1 8.8 https://nvd.nist.gov/vuln/detail/CVE-2023-1534
Reference id Reference type URL
http://packetstormsecurity.com/files/171961/Chrome-GL_ShaderBinary-Untrusted-Process-Exposure.html
http://packetstormsecurity.com/files/171965/Chrome-SpvGetMappedSamplerName-Out-Of-Bounds-String-Copy.html
https://api.first.org/data/v1/epss?cve=CVE-2023-1534
https://chromereleases.googleblog.com/2023/03/stable-channel-update-for-desktop_21.html
https://crbug.com/1422594
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1528
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1529
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1530
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1531
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1532
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1533
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1534
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FG3CRADL7IL5IHK4NCHG4LAYLKHFXETX/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HO3QZY4UQFP4XNF43ILMVVOABMB7KAQ5/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NGWWGQULJ7QRNP4GY57HE7OO7VMRWMPN/
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*
CVE-2023-1534 https://nvd.nist.gov/vuln/detail/CVE-2023-1534
GLSA-202309-17 https://security.gentoo.org/glsa/202309-17
USN-6021-1 https://usn.ubuntu.com/6021-1/
No exploits are available.
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2023-1534
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2023-1534
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.51571
EPSS Score 0.00315
Published At March 28, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
There are no relevant records.