CVE-2023-1938
published 2023-05-30CVE-2023-1938: The WP Fastest Cache WordPress plugin before 1.1.5 does not have CSRF check in an AJAX action, and does not validate user input before using it in the…
PriorityP350high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
EPSS
8.47%
94.3th percentile
The WP Fastest Cache WordPress plugin before 1.1.5 does not have CSRF check in an AJAX action, and does not validate user input before using it in the wp_remote_get() function, leading to a Blind SSRF issue
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| msrc | microsoft_edge | — | — |
| wpfastestcache | wp_fastest_cache | < 1.1.5 | 1.1.5 |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
vendor_msrc8.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-8wvj-4mr8-vx3q: The WP Fastest Cache WordPress plugin before 1
ghsa_unreviewed·2023-05-30
CVE-2023-1938 [HIGH] CWE-352 GHSA-8wvj-4mr8-vx3q: The WP Fastest Cache WordPress plugin before 1
The WP Fastest Cache WordPress plugin before 1.1.5 does not have CSRF check in an AJAX action, and does not validate user input before using it in the wp_remote_get() function, leading to a Blind SSRF issue
Microsoft
Chromium: CVE-2023-4572 Use after free in MediaStream
vendor_msrc·2023-08-08·CVSS 8.8
CVE-2023-4572 [HIGH] Chromium: CVE-2023-4572 Use after free in MediaStream
Chromium: CVE-2023-4572 Use after free in MediaStream
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
116.0.1938.69
8/31/2023
116.0.5845.140/.141
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the brows
Microsoft
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
vendor_msrc·2023-08-08·CVSS 3.1
CVE-2023-38158 [LOW] Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
116.0.1938.54
8/21/2023
116.0.5845.96/.97
FAQ: According to the CVSS metric, successful exploitation of this vulnerability could lead to some loss of confidentiality (C:L)? What does that mean for this vulnerability?
Exploitation of this vulnerability only discloses limited information, no sensitive information can be obtained.
FAQ: According to the CVSS metric, the attack complexity is high (AC:H). What does that mean for this vulnerability?
Successful exploitation of this vulnerability requires an attacker to take additional actions prior to exploitation to prepare the target environment.
FAQ: A
Microsoft
Chromium: CVE-2023-4350 Inappropriate implementation in Fullscreen
vendor_msrc·2023-08-08·CVSS 6.5
CVE-2023-4350 [MEDIUM] Chromium: CVE-2023-4350 Inappropriate implementation in Fullscreen
Chromium: CVE-2023-4350 Inappropriate implementation in Fullscreen
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
116.0.1938.54
8/21/2023
116.0.5845.96/.97
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version o
Microsoft
Chromium: CVE-2023-4353 Heap buffer overflow in ANGLE
vendor_msrc·2023-08-08·CVSS 8.8
CVE-2023-4353 [HIGH] Chromium: CVE-2023-4353 Heap buffer overflow in ANGLE
Chromium: CVE-2023-4353 Heap buffer overflow in ANGLE
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
116.0.1938.54
8/21/2023
116.0.5845.96/.97
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser
Microsoft
Chromium: CVE-2023-4366 Use after free in Extensions
vendor_msrc·2023-08-08·CVSS 8.8
CVE-2023-4366 [HIGH] Chromium: CVE-2023-4366 Use after free in Extensions
Chromium: CVE-2023-4366 Use after free in Extensions
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
116.0.1938.54
8/21/2023
116.0.5845.96/.97
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
Microsoft
Chromium: CVE-2023-4361 Inappropriate implementation in Autofill
vendor_msrc·2023-08-08·CVSS 5.3
CVE-2023-4361 [MEDIUM] Chromium: CVE-2023-4361 Inappropriate implementation in Autofill
Chromium: CVE-2023-4361 Inappropriate implementation in Autofill
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
116.0.1938.54
8/21/2023
116.0.5845.96/.97
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of
Microsoft
Chromium: CVE-2023-4352 Type Confusion in V8
vendor_msrc·2023-08-08·CVSS 8.8
CVE-2023-4352 [HIGH] Chromium: CVE-2023-4352 Type Confusion in V8
Chromium: CVE-2023-4352 Type Confusion in V8
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
116.0.1938.54
8/21/2023
116.0.5845.96/.97
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
In you
Microsoft
Chromium: CVE-2023-4359 Inappropriate implementation in App Launcher
vendor_msrc·2023-08-08·CVSS 5.3
CVE-2023-4359 [MEDIUM] Chromium: CVE-2023-4359 Inappropriate implementation in App Launcher
Chromium: CVE-2023-4359 Inappropriate implementation in App Launcher
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
116.0.1938.54
8/21/2023
116.0.5845.96/.97
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version
Microsoft
Chromium: CVE-2023-2312 Use after free in Offline
vendor_msrc·2023-08-08·CVSS 8.8
CVE-2023-2312 [HIGH] Chromium: CVE-2023-2312 Use after free in Offline
Chromium: CVE-2023-2312 Use after free in Offline
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
116.0.1938.54
8/21/2023
116.0.5845.96/.97
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
I
Microsoft
Chromium: CVE-2023-4362 Heap buffer overflow in Mojom IDL
vendor_msrc·2023-08-08·CVSS 8.8
CVE-2023-4362 [HIGH] Chromium: CVE-2023-4362 Heap buffer overflow in Mojom IDL
Chromium: CVE-2023-4362 Heap buffer overflow in Mojom IDL
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
116.0.1938.54
8/21/2023
116.0.5845.96/.97
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the bro
Microsoft
Chromium: CVE-2023-4351 Use after free in Network
vendor_msrc·2023-08-08·CVSS 8.8
CVE-2023-4351 [HIGH] Chromium: CVE-2023-4351 Use after free in Network
Chromium: CVE-2023-4351 Use after free in Network
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
116.0.1938.54
8/21/2023
116.0.5845.96/.97
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
I
Microsoft
Chromium: CVE-2023-4355 Out of bounds memory access in V8
vendor_msrc·2023-08-08·CVSS 8.8
CVE-2023-4355 [HIGH] Chromium: CVE-2023-4355 Out of bounds memory access in V8
Chromium: CVE-2023-4355 Out of bounds memory access in V8
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
116.0.1938.54
8/21/2023
116.0.5845.96/.97
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the bro
Microsoft
Chromium: CVE-2023-4354 Heap buffer overflow in Skia
vendor_msrc·2023-08-08·CVSS 8.8
CVE-2023-4354 [HIGH] Chromium: CVE-2023-4354 Heap buffer overflow in Skia
Chromium: CVE-2023-4354 Heap buffer overflow in Skia
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
116.0.1938.54
8/21/2023
116.0.5845.96/.97
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
Microsoft
Chromium: CVE-2023-4363 Inappropriate implementation in WebShare
vendor_msrc·2023-08-08·CVSS 4.3
CVE-2023-4363 [MEDIUM] Chromium: CVE-2023-4363 Inappropriate implementation in WebShare
Chromium: CVE-2023-4363 Inappropriate implementation in WebShare
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
116.0.1938.54
8/21/2023
116.0.5845.96/.97
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of
Microsoft
Chromium: CVE-2023-4365 Inappropriate implementation in Fullscreen
vendor_msrc·2023-08-08·CVSS 4.3
CVE-2023-4365 [MEDIUM] Chromium: CVE-2023-4365 Inappropriate implementation in Fullscreen
Chromium: CVE-2023-4365 Inappropriate implementation in Fullscreen
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
116.0.1938.54
8/21/2023
116.0.5845.96/.97
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version o
Microsoft
Chromium: CVE-2023-4357 Insufficient validation of untrusted input in XML
vendor_msrc·2023-08-08·CVSS 8.8
CVE-2023-4357 [HIGH] Chromium: CVE-2023-4357 Insufficient validation of untrusted input in XML
Chromium: CVE-2023-4357 Insufficient validation of untrusted input in XML
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
116.0.1938.54
8/21/2023
116.0.5845.96/.97
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the ve
Microsoft
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
vendor_msrc·2023-08-08·CVSS 8.8
CVE-2023-36787 [HIGH] CWE-416 Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
FAQ: Why is the severity for this CVE rated as Moderate, but the CVSS score is higher than normal?
Per our severity guidelines, the amount of user interaction or preconditions required to allow this sort of exploitation downgraded the severity, specifically it says, "If a bug requires more than a click, a key press, or several preconditions, the severity will be downgraded". The CVSS scoring system doesn't allow for this type of nuance.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
116.0.1938.54
8/21/2023
116.0.5845.96/.97
FAQ: What privileges could be gained by an attacker who successfully exploited the vulnerability?
An attacker who successf
Microsoft
Chromium: CVE-2023-4356 Use after free in Audio
vendor_msrc·2023-08-08·CVSS 8.8
CVE-2023-4356 [HIGH] Chromium: CVE-2023-4356 Use after free in Audio
Chromium: CVE-2023-4356 Use after free in Audio
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
116.0.1938.54
8/21/2023
116.0.5845.96/.97
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
In
Microsoft
Chromium: CVE-2023-4360 Inappropriate implementation in Color
vendor_msrc·2023-08-08·CVSS 4.3
CVE-2023-4360 [MEDIUM] Chromium: CVE-2023-4360 Inappropriate implementation in Color
Chromium: CVE-2023-4360 Inappropriate implementation in Color
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
116.0.1938.54
8/21/2023
116.0.5845.96/.97
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the
Microsoft
Chromium: CVE-2023-4367 Insufficient policy enforcement in Extensions API
vendor_msrc·2023-08-08·CVSS 6.5
CVE-2023-4367 [MEDIUM] Chromium: CVE-2023-4367 Insufficient policy enforcement in Extensions API
Chromium: CVE-2023-4367 Insufficient policy enforcement in Extensions API
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
116.0.1938.54
8/21/2023
116.0.5845.96/.97
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the ve
Microsoft
Chromium: CVE-2023-4358 Use after free in DNS
vendor_msrc·2023-08-08·CVSS 8.8
CVE-2023-4358 [HIGH] Chromium: CVE-2023-4358 Use after free in DNS
Chromium: CVE-2023-4358 Use after free in DNS
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
116.0.1938.54
8/21/2023
116.0.5845.96/.97
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
In yo
Microsoft
Chromium: CVE-2023-4364 Inappropriate implementation in Permission Prompts
vendor_msrc·2023-08-08·CVSS 4.3
CVE-2023-4364 [MEDIUM] Chromium: CVE-2023-4364 Inappropriate implementation in Permission Prompts
Chromium: CVE-2023-4364 Inappropriate implementation in Permission Prompts
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
116.0.1938.54
8/21/2023
116.0.5845.96/.97
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the v
Microsoft
Chromium: CVE-2023-4349 Use after free in Device Trust Connectors
vendor_msrc·2023-08-08·CVSS 8.8
CVE-2023-4349 [HIGH] Chromium: CVE-2023-4349 Use after free in Device Trust Connectors
Chromium: CVE-2023-4349 Use after free in Device Trust Connectors
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
116.0.1938.54
8/21/2023
116.0.5845.96/.97
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of
Microsoft
Chromium: CVE-2023-4368 Insufficient policy enforcement in Extensions API
vendor_msrc·2023-08-08·CVSS 8.8
CVE-2023-4368 [HIGH] Chromium: CVE-2023-4368 Insufficient policy enforcement in Extensions API
Chromium: CVE-2023-4368 Insufficient policy enforcement in Extensions API
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
116.0.1938.54
8/21/2023
116.0.5845.96/.97
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the ve
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2023-05-30
Published