CVE-2023-4357
published 2023-08-15CVE-2023-4357: Insufficient validation of untrusted input in XML in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to bypass file access restrictions via a…
PriorityP265high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
EPSS
45.91%
98.7th percentile
Insufficient validation of untrusted input in XML in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to bypass file access restrictions via a crafted HTML page. (Chromium security severity: Medium)
Affected
12 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| chromium | chromium | >= 0 < 116.0.5845.96-1~deb11u1 | 116.0.5845.96-1~deb11u1 |
| chromium | chromium | >= 0 < 116.0.5845.96-1~deb12u1 | 116.0.5845.96-1~deb12u1 |
| chromium | chromium | >= 0 < 116.0.5845.96-1 | 116.0.5845.96-1 |
| chromium | chromium | >= 0 < 116.0.5845.96-1 | 116.0.5845.96-1 |
| debian | chromium | < chromium 116.0.5845.96-1~deb12u1 (bookworm) | chromium 116.0.5845.96-1~deb12u1 (bookworm) |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| fedoraproject | fedora | — | — |
| chrome | < 116.0.5845.96 | 116.0.5845.96 | |
| chrome | >= 116.0.5845.96 < 116.0.5845.96 | 116.0.5845.96 | |
| chrome_chrome | — | — | |
| msrc | microsoft_edge | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →The vulnerability is triggered via a crafted HTML page that exploits insufficient XML input validation in Chrome, allowing bypass of file access restrictions. Detection should focus on suspicious XML-heavy HTML pages delivered to Chrome/Edge clients. ↗
- →Patch Chrome to version 116.0.5845.96 or later; any Chrome instance below this version is vulnerable and should be flagged in asset inventory. ↗
- ·This CVE is scoped as a local-scope issue per Debian's security tracker, despite being remotely triggerable via a crafted HTML page — detection/triage should account for both remote delivery and local file access bypass impact. ↗
- ·The Chromium bug tracker entry (1458911) is referenced publicly but the full technical details of the XML validation bypass are not disclosed in these sources, limiting precise rule crafting. ↗
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv8.8HIGH
vendor_debian8.8HIGH
vendor_msrc8.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Chrome
Long Term Support Channel Update for ChromeOS: CVE-2023-4357
vendor_chrome·2023-09-21·CVSS 8.8
CVE-2023-4357 [HIGH] Long Term Support Channel Update for ChromeOS: CVE-2023-4357
Long Term Support Channel Update for ChromeOS
CVE-2023-4357
Chrome
Stable Channel Update for ChromeOS / ChromeOS Flex: CVE-2023-4355
vendor_chrome·2023-08-25·CVSS 8.8
CVE-2023-4355 [HIGH] Stable Channel Update for ChromeOS / ChromeOS Flex: CVE-2023-4355
Stable Channel Update for ChromeOS / ChromeOS Flex
CVE-2023-4355: Out of bounds memory access in V8. Reported by Sergei Glazunov of Google Project Zero on 2023-07-31 [$5000][ 1449929 ] Medium CVE-2023-4356: Use after free in Audio
Reported by Zhenghang Xiao (@Kipreyyy) on 2023-05-30 [$3000][ 1458911 ] Medium CVE-2023-4357: Insufficient validation of untrusted input in XML
Severity: high
Microsoft
Chromium: CVE-2023-4357 Insufficient validation of untrusted input in XML
vendor_msrc·2023-08-08·CVSS 8.8
CVE-2023-4357 [HIGH] Chromium: CVE-2023-4357 Insufficient validation of untrusted input in XML
Chromium: CVE-2023-4357 Insufficient validation of untrusted input in XML
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
116.0.1938.54
8/21/2023
116.0.5845.96/.97
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the ve
Debian
CVE-2023-4357: chromium - Insufficient validation of untrusted input in XML in Google Chrome prior to 116....
vendor_debian·2023·CVSS 8.8
CVE-2023-4357 [HIGH] CVE-2023-4357: chromium - Insufficient validation of untrusted input in XML in Google Chrome prior to 116....
Insufficient validation of untrusted input in XML in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to bypass file access restrictions via a crafted HTML page. (Chromium security severity: Medium)
Scope: local
bookworm: resolved (fixed in 116.0.5845.96-1~deb12u1)
bullseye: resolved (fixed in 116.0.5845.96-1~deb11u1)
forky: resolved (fixed in 116.0.5845.96-1)
sid: resolved (fixed in 116.0.5845.96-1)
trixie: resolved (fixed in 116.0.5845.96-1)
GHSA
GHSA-6cx7-2m7q-5fh3: Insufficient validation of untrusted input in XML in Google Chrome prior to 116
ghsa_unreviewed·2023-08-15
CVE-2023-4357 [HIGH] CWE-20 GHSA-6cx7-2m7q-5fh3: Insufficient validation of untrusted input in XML in Google Chrome prior to 116
Insufficient validation of untrusted input in XML in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to bypass file access restrictions via a crafted HTML page. (Chromium security severity: Medium)
OSV
CVE-2023-4357: Insufficient validation of untrusted input in XML in Google Chrome prior to 116
osv·2023-08-15·CVSS 8.8
CVE-2023-4357 [HIGH] CVE-2023-4357: Insufficient validation of untrusted input in XML in Google Chrome prior to 116
Insufficient validation of untrusted input in XML in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to bypass file access restrictions via a crafted HTML page. (Chromium security severity: Medium)
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop_15.htmlhttps://crbug.com/1458911https://lists.fedoraproject.org/archives/list/[email protected]/message/2DMXHPRUGBUDNHZCZCIVMWAUIEXEGMGT/https://lists.fedoraproject.org/archives/list/[email protected]/message/OCFEK63FUHFXZH5MSG6TNQOXMQWM4M5S/https://security.gentoo.org/glsa/202401-34https://www.debian.org/security/2023/dsa-5479https://chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop_15.htmlhttps://crbug.com/1458911https://lists.fedoraproject.org/archives/list/[email protected]/message/2DMXHPRUGBUDNHZCZCIVMWAUIEXEGMGT/https://lists.fedoraproject.org/archives/list/[email protected]/message/OCFEK63FUHFXZH5MSG6TNQOXMQWM4M5S/https://security.gentoo.org/glsa/202401-34https://www.debian.org/security/2023/dsa-5479
2023-08-15
Published