cbcvebase.
CVE-2023-4362
published 2023-08-15

CVE-2023-4362: Heap buffer overflow in Mojom IDL in Google Chrome prior to 116.0.5845.96 allowed a remote attacker who had compromised the renderer process and gained control…

PriorityP261high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
EPSS
18.46%
96.9th percentile
Heap buffer overflow in Mojom IDL in Google Chrome prior to 116.0.5845.96 allowed a remote attacker who had compromised the renderer process and gained control of a WebUI process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

Affected

11 ranges
VendorProductVersion rangeFixed in
chromiumchromium>= 0 < 116.0.5845.96-1~deb11u1116.0.5845.96-1~deb11u1
chromiumchromium>= 0 < 116.0.5845.96-1~deb12u1116.0.5845.96-1~deb12u1
chromiumchromium>= 0 < 116.0.5845.96-1116.0.5845.96-1
chromiumchromium>= 0 < 116.0.5845.96-1116.0.5845.96-1
debianchromium< chromium 116.0.5845.96-1~deb12u1 (bookworm)chromium 116.0.5845.96-1~deb12u1 (bookworm)
debiandebian_linux
debiandebian_linux
googlechrome< 116.0.5845.96116.0.5845.96
googlechrome>= 116.0.5845.96 < 116.0.5845.96116.0.5845.96
googlechrome_chrome
msrcmicrosoft_edge

Detection & IOCsextracted from sources · hover to see the quote

  • Vulnerability exists in Google Chrome prior to version 116.0.5845.96; detect outdated Chrome installations below this version as potentially vulnerable to CVE-2023-4362 (Heap buffer overflow in Mojom IDL)
  • Exploitation requires a compromised renderer process that has also gained control of a WebUI process — look for renderer process compromise chained with WebUI process access as a two-stage attack indicator
  • Debian fixed packages are available; on Debian systems, flag chromium packages older than 116.0.5845.96-1~deb12u1 (bookworm), 116.0.5845.96-1~deb11u1 (bullseye), or 116.0.5845.96-1 (sid/trixie/forky)
  • ·Exploitation requires a multi-step compromise: attacker must first compromise the renderer process AND separately gain control of a WebUI process before the heap overflow in Mojom IDL can be triggered — standalone renderer compromise is insufficient
  • ·Chromium security severity is rated Medium; exploitation is constrained by the prerequisite of prior renderer and WebUI process compromise, limiting real-world exploitability

CVSS provenance

nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv8.8HIGH
vendor_debian8.8HIGH
vendor_msrc8.8HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.