Test ID:	1.3.6.1.4.1.25623.1.0.826994
Category:	General
Title:	Google Chrome Security Update (stable-channel-update-for-desktop_30-2023-05) - Mac OS X
Summary:	Google Chrome is prone to multiple; vulnerabilities.
Description:	Summary: Google Chrome is prone to multiple vulnerabilities. Vulnerability Insight: Multiple flaws exist due to, - Out of bounds write in Swiftshader. - Use after free in Extensions. - Use after free in PDF. - Out of bounds memory access in Mojo. - Type Confusion in V8. - Inappropriate implementation in Picture In Picture. - Insufficient data validation in Installer. - Inappropriate implementation in Downloads. - Inappropriate implementation in Extensions API. Vulnerability Impact: Successful exploitation will allow attackers to run arbitrary code, bypass security restrictions, conduct spoofing and cause a denial of service on affected system. Affected Software/OS: Google Chrome version prior to 114.0.5735.90 on Mac OS X. Solution: Upgrade to Google Chrome version 114.0.5735.90 or later. Please see the references for more information. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2023-2929 Debian Security Information: DSA-5418 (Google Search) https://www.debian.org/security/2023/dsa-5418 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/B6SAST6CB5KKCQKH75ER2UQ3ICYPHCIZ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2LE64KGGOISKPKMYROSDT4K6QFVDIRF6/ https://security.gentoo.org/glsa/202311-11 https://security.gentoo.org/glsa/202401-34 https://chromereleases.googleblog.com/2023/05/stable-channel-update-for-desktop_30.html https://crbug.com/1410191 Common Vulnerability Exposure (CVE) ID: CVE-2023-2930 https://crbug.com/1443401 Common Vulnerability Exposure (CVE) ID: CVE-2023-2931 https://crbug.com/1444238 Common Vulnerability Exposure (CVE) ID: CVE-2023-2932 https://crbug.com/1444581 Common Vulnerability Exposure (CVE) ID: CVE-2023-2933 https://crbug.com/1445426 Common Vulnerability Exposure (CVE) ID: CVE-2023-2934 http://packetstormsecurity.com/files/173259/Chrome-Mojo-Message-Validation-Bypass.html https://crbug.com/1429720 Common Vulnerability Exposure (CVE) ID: CVE-2023-2935 http://packetstormsecurity.com/files/173196/Chrome-v8-internal-Object-SetPropertyWithAccessor-Type-Confusion.html https://crbug.com/1440695 Common Vulnerability Exposure (CVE) ID: CVE-2023-2936 http://packetstormsecurity.com/files/173197/Chrome-V8-Type-Confusion.html https://crbug.com/1443452 Common Vulnerability Exposure (CVE) ID: CVE-2023-2937 https://crbug.com/1413813 Common Vulnerability Exposure (CVE) ID: CVE-2023-2938 https://crbug.com/1416350 Common Vulnerability Exposure (CVE) ID: CVE-2023-2939 https://crbug.com/1427431 Common Vulnerability Exposure (CVE) ID: CVE-2023-2940 https://crbug.com/1426807 Common Vulnerability Exposure (CVE) ID: CVE-2023-2941 https://crbug.com/1430269
Copyright	Copyright (C) 2023 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.