Google Chrome Chrome vulnerabilities

CVE-2023-1228 [MEDIUM] Stable Channel Update for Desktop: CVE-2023-1228 Stable Channel Update for Desktop CVE-2023-1228: Insufficient policy enforcement in Intents. Reported by Axel Chong on 2022-09-18 [$2000][ 1160485 ] Medium CVE-2023-1229: Inappropriate implementation in Permission prompts Reported by Thomas Orlita on 2020-12-20 [$2000][ 1404230 ] Medium CVE-2023-1230: Inappropriate implementation in WebApp Installs Severity: medium

CVE-2023-1225 [MEDIUM] Stable Channel Update for Desktop: CVE-2023-1225 Stable Channel Update for Desktop CVE-2023-1225: Insufficient policy enforcement in Navigation. Reported by Roberto Ffrench-Davis @Lihaft on 2023-01-20 [$3000][ 1013080 ] Medium CVE-2023-1226: Insufficient policy enforcement in Web Payments API Reported by Anonymous on 2019-10-10 [$3000][ 1348791 ] Medium CVE-2023-1227: Use after free in Core Severity: medium

CVE-2023-1231 [MEDIUM] Stable Channel Update for Desktop: CVE-2023-1231 Stable Channel Update for Desktop CVE-2023-1231: Inappropriate implementation in Autofill. Reported by Kirtikumar Anandrao Ramchandani via Yan Zhu of Brave on 2021-11-30 [$3000][ 813542 ] Low CVE-2023-2314: Insufficient data validation in DevTools Reported by Rob Wu on 2018-02-19 [$2000][ 1346924 ] Low CVE-2023-1232: Insufficient policy enforcement in Resource Timing Severity: medium

CVE-2023-1233 [LOW] Stable Channel Update for Desktop: CVE-2023-1233 Stable Channel Update for Desktop CVE-2023-1233: Insufficient policy enforcement in Resource Timing. Reported by Soroush Karami on 2020-01-25 [$1000][ 1404621 ] Low CVE-2023-1234: Inappropriate implementation in Intents Reported by Axel Chong on 2023-01-03 [$1000][ 1404704 ] Low CVE-2023-1235: Type Confusion in DevTools Severity: low

CVE-2023-1236 [LOW] Stable Channel Update for Desktop: CVE-2023-1236 Stable Channel Update for Desktop CVE-2023-1236: Inappropriate implementation in Internals. Reported by Alesandro Ortiz on 2022-10-14 We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel Severity: low

CVE-2022-45934 [HIGH] Long Term Support Channel Update for ChromeOS: CVE-2022-45934 Long Term Support Channel Update for ChromeOS CVE-2022-45934

CVE-2022-4139 [HIGH] Long Term Support Channel Update for ChromeOS: CVE-2022-4139 Long Term Support Channel Update for ChromeOS CVE-2022-4139

CVE-2023-0128 [HIGH] Long Term Support Channel Update for ChromeOS: CVE-2023-0128 Long Term Support Channel Update for ChromeOS CVE-2023-0128

CVE-2022-4378 [HIGH] Long Term Support Channel Update for ChromeOS: CVE-2022-4378 Long Term Support Channel Update for ChromeOS CVE-2022-4378

CVE-2023-0129 [HIGH] Long Term Support Channel Update for ChromeOS: CVE-2023-0129 Long Term Support Channel Update for ChromeOS CVE-2023-0129

CVE-2023-0929 [HIGH] Stable Channel Desktop Update: CVE-2023-0929 Stable Channel Desktop Update CVE-2023-0929: Use after free in Vulkan. Reported by Cassidy Kim(@cassidy6564) on 2022-12-09 [$10000][ 1410766 ] High CVE-2023-0930: Heap buffer overflow in Video Reported by Cassidy Kim(@cassidy6564) on 2023-01-27 [$3000][ 1407701 ] High CVE-2023-0931: Use after free in Video Severity: high

CVE-2023-0932 [HIGH] Stable Channel Desktop Update: CVE-2023-0932 Stable Channel Desktop Update CVE-2023-0932: Use after free in WebRTC. Reported by Omri Bushari (Talon Cyber Security) on 2023-02-05 [$11000][ 1404864 ] Medium CVE-2023-0933: Integer overflow in PDF Reported by Zhiyi Zhang from Codesafe Team of Legendsec at QI-ANXIN Group on 2023-01-04 We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching t

CVE-2023-0696 [HIGH] Stable Channel Update for Desktop: CVE-2023-0696 Stable Channel Update for Desktop CVE-2023-0696: Type Confusion in V8. Reported by Haein Lee at KAIST Hacking Lab on 2022-12-18 [$4000][ 1341541 ] High CVE-2023-0697: Inappropriate implementation in Full screen mode Reported by Ahmed ElMasry on 2022-07-03 [$2000][ 1403573 ] High CVE-2023-0698: Out of bounds read in WebRTC Severity: high

CVE-2023-0699 [MEDIUM] Stable Channel Update for Desktop: CVE-2023-0699 Stable Channel Update for Desktop CVE-2023-0699: Use after free in GPU. Reported by 7o8v and Cassidy Kim(@cassidy6564) on 2022-10-06 [$3000][ 1393732 ] Medium CVE-2023-0700: Inappropriate implementation in Download Reported by Axel Chong on 2022-11-26 [$2000][ 1405123 ] Medium CVE-2023-0701: Heap buffer overflow in WebUI Severity: medium

CVE-2023-0702 [MEDIUM] Stable Channel Update for Desktop: CVE-2023-0702 Stable Channel Update for Desktop CVE-2023-0702: Type Confusion in Data Transfer. Reported by Sri on 2022-04-14 [$1000][ 1405574 ] Medium CVE-2023-0703: Type Confusion in DevTools Reported by raven at KunLun lab on 2023-01-07 [$2000][ 1385982 ] Low CVE-2023-0704: Insufficient policy enforcement in DevTools Severity: medium

CVE-2023-0705 [LOW] Stable Channel Update for Desktop: CVE-2023-0705 Stable Channel Update for Desktop CVE-2023-0705: Integer overflow in Core. Reported by SorryMybad (@S0rryMybad) of Kunlun Lab on 2021-08-11 We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel Severity: low

CVE-2023-0471 [HIGH] Long Term Support Channel Update for ChromeOS: CVE-2023-0471 Long Term Support Channel Update for ChromeOS CVE-2023-0471

CVE-2023-0474 [HIGH] Long Term Support Channel Update for ChromeOS: CVE-2023-0474 Long Term Support Channel Update for ChromeOS CVE-2023-0474

CVE-2023-0472 [HIGH] Long Term Support Channel Update for ChromeOS: CVE-2023-0472 Long Term Support Channel Update for ChromeOS CVE-2023-0472

CVE-2023-0473 [HIGH] Long Term Support Channel Update for ChromeOS: CVE-2023-0473 Long Term Support Channel Update for ChromeOS CVE-2023-0473