Type Confusion in V8 (Google Chrome <112.0.5615.121)
A type confusion vulnerability exists in the V8 JavaScript engine in Google Chrome prior to version 112.0.5615.121. This flaw allows a remote attacker to trigger heap corruption by enticing a user to visit a specially crafted HTML page, potentially leading to arbitrary code execution within the context of the browser.
Are you exposed to this one?
Mallory correlates every CVE against your assets, your vendors, and active adversary campaigns. Know which vulnerabilities matter for you, not just which ones are loud.
Impact, mitigation & remediation
What it means. What to do now. Patch path, mitigations, and the assume-compromise checklist.
Impact
What an attacker gets, and what they’ve been doing with it.
Mitigation
If you can’t patch tonight, do this now.
Remediation
Patch, then assume compromise.
Exploits
1 valid exploit after Mallory filtered fakes, detection scripts, and README-only repos.
This repository contains a proof-of-concept exploit for CVE-2023-2033, a type confusion vulnerability in the V8 JavaScript engine used by Google Chrome. The main file, 'exploit.js', is a standalone JavaScript exploit that must be run in a specifically built version of the V8 d8 shell (commit f7a3499f6d7e50b227a17d2bbd96e4b59a261d3c). The exploit leverages a bug in V8's Turbofan JIT compiler's type system, allowing the attacker to create arbitrary memory read and write primitives by manipulating JavaScript arrays and objects. The exploit demonstrates the ability to leak addresses and craft fake objects, which are essential steps toward achieving arbitrary code execution. The repository also includes a patch file, 'fix_torque_build_error.patch', which is only needed to resolve a build issue in V8 and is not related to the vulnerability. The README is minimal and simply identifies the CVE. No network endpoints or external services are targeted; the exploit is purely local and requires manual setup of the vulnerable environment.
Affected products & vendors
Products and vendors Mallory has correlated with this vulnerability. Open in Mallory to drill down to specific CPE configurations and version ranges.
Vendor-confirmed product mapping. Mallory continuously reconciles this list against your asset inventory.
Recent activity
1 sources tracked across advisories, community write-ups, and news. New activity surfaces here as Mallory finds it.
The version that knows your environment.
Query your assets running an affected version, and investigate the blast radius.
Every observed campaign linking this CVE to a named adversary.
Malware families riding this exploit, with evidence and IOCs.
YARA, Sigma, Snort, and vendor rules, auto-deployed to your SIEM.
Cross-references every affected SKU, including bundled OEM variants.
Community discussion across Reddit, Mastodon, and other social sources.