First published: Fri Feb 17 2023(Updated: )
Type confusion in CSS in Google Chrome prior to 111.0.5563.64 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Credit: chrome-cve-admin@google.com Anonymous chrome-cve-admin@google.com
Affected Software | Affected Version | How to fix |
---|---|---|
Google Chrome | <111.0.5563.64 | |
Google Chrome | <111.0.5563.64 | 111.0.5563.64 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
CVE-2023-1215 has a severity rating of High due to its potential for heap corruption exploitation.
To fix CVE-2023-1215, update Google Chrome to version 111.0.5563.64 or later.
CVE-2023-1215 affects all versions of Google Chrome prior to 111.0.5563.64.
Yes, CVE-2023-1215 can be potentially exploited remotely through a crafted HTML page.
CVE-2023-1215 is caused by type confusion in the CSS handling of Google Chrome.