cbcvebase.
CVE-2023-4357
published 2023-08-15

CVE-2023-4357: Insufficient validation of untrusted input in XML in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to bypass file access restrictions via a…

PriorityP265high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
EPSS
45.91%
98.7th percentile
Insufficient validation of untrusted input in XML in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to bypass file access restrictions via a crafted HTML page. (Chromium security severity: Medium)

Affected

12 ranges
VendorProductVersion rangeFixed in
chromiumchromium>= 0 < 116.0.5845.96-1~deb11u1116.0.5845.96-1~deb11u1
chromiumchromium>= 0 < 116.0.5845.96-1~deb12u1116.0.5845.96-1~deb12u1
chromiumchromium>= 0 < 116.0.5845.96-1116.0.5845.96-1
chromiumchromium>= 0 < 116.0.5845.96-1116.0.5845.96-1
debianchromium< chromium 116.0.5845.96-1~deb12u1 (bookworm)chromium 116.0.5845.96-1~deb12u1 (bookworm)
debiandebian_linux
debiandebian_linux
fedoraprojectfedora
googlechrome< 116.0.5845.96116.0.5845.96
googlechrome>= 116.0.5845.96 < 116.0.5845.96116.0.5845.96
googlechrome_chrome
msrcmicrosoft_edge

Detection & IOCsextracted from sources · hover to see the quote

  • The vulnerability is triggered via a crafted HTML page that exploits insufficient XML input validation in Chrome, allowing bypass of file access restrictions. Detection should focus on suspicious XML-heavy HTML pages delivered to Chrome/Edge clients.
  • Patch Chrome to version 116.0.5845.96 or later; any Chrome instance below this version is vulnerable and should be flagged in asset inventory.
  • ·This CVE is scoped as a local-scope issue per Debian's security tracker, despite being remotely triggerable via a crafted HTML page — detection/triage should account for both remote delivery and local file access bypass impact.
  • ·The Chromium bug tracker entry (1458911) is referenced publicly but the full technical details of the XML validation bypass are not disclosed in these sources, limiting precise rule crafting.

CVSS provenance

nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv8.8HIGH
vendor_debian8.8HIGH
vendor_msrc8.8HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.