Search for vulnerabilities
Vulnerability details: VCID-8puv-j6ua-aaan
Vulnerability ID VCID-8puv-j6ua-aaan
Aliases CVE-2023-0474
Summary Use after free in GuestView in Google Chrome prior to 109.0.5414.119 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a Chrome web app. (Chromium security severity: Medium)
Status Published
Exploitability 0.5
Weighted Severity 7.9
Risk 4.0
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-416 Use After Free
System Score Found at
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00118 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00149 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00174 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00174 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00174 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00174 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00174 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00174 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00174 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00174 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00174 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00174 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00174 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00174 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00174 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00174 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00174 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
epss 0.00192 https://api.first.org/data/v1/epss?cve=CVE-2023-0474
cvssv3 8.8 https://nvd.nist.gov/vuln/detail/CVE-2023-0474
cvssv3.1 8.8 https://nvd.nist.gov/vuln/detail/CVE-2023-0474
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2023-0474
https://chromereleases.googleblog.com/2023/01/stable-channel-update-for-desktop_24.html
https://crbug.com/1400841
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4926
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0471
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0472
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0473
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0474
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
CVE-2023-0474 https://nvd.nist.gov/vuln/detail/CVE-2023-0474
USN-5881-1 https://usn.ubuntu.com/5881-1/
No exploits are available.
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2023-0474
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2023-0474
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.3199
EPSS Score 0.00118
Published At May 8, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
There are no relevant records.