Search for vulnerabilities
Vulnerability details: VCID-yk52-d7bp-aaae
Vulnerability ID VCID-yk52-d7bp-aaae
Aliases CVE-2023-3737
Summary Inappropriate implementation in Notifications in Google Chrome prior to 115.0.5790.98 allowed a remote attacker to spoof the contents of media notifications via a crafted HTML page. (Chromium security severity: Medium)
Status Published
Exploitability 0.5
Weighted Severity 3.9
Risk 1.9
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00173 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00181 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00181 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00181 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00181 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00186 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00186 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00186 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00186 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00186 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00186 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00186 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00186 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00186 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00186 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00186 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00223 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00223 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00223 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00223 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00223 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00223 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00223 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00223 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00223 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00223 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00223 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00223 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00223 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00223 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00223 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
epss 0.00415 https://api.first.org/data/v1/epss?cve=CVE-2023-3737
cvssv3 4.3 https://nvd.nist.gov/vuln/detail/CVE-2023-3737
cvssv3.1 4.3 https://nvd.nist.gov/vuln/detail/CVE-2023-3737
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2023-3737
https://chromereleases.googleblog.com/2023/07/stable-channel-update-for-desktop.html
https://crbug.com/1446754
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3727
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3728
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3730
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3732
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3733
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3734
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3735
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3736
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3737
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3738
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3739
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3740
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4860
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PQKT7EGDD2P3L7S3NXEDDRCPK4NNZNWJ/
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
CVE-2023-3737 https://nvd.nist.gov/vuln/detail/CVE-2023-3737
GLSA-202401-34 https://security.gentoo.org/glsa/202401-34
No exploits are available.
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2023-3737
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2023-3737
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.39457
EPSS Score 0.00173
Published At April 15, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
There are no relevant records.