PRUEBA AHORA

Chrome 116 Audit

Security Software Vulnerability

Find Outdated Chrome Installations

On August 15th, Google released Chrome 116 for Windows, Linux, and Mac. This release includes fixes for 26 security issues as well as added features and updates. These new features and updates include:

  • Enterprises can now sign up for security fix notifications.
  • An increase in release velocity for Chrome with security improvements planned for each week. There will still be a major release approximately every four weeks, but starting in Chrome 116, minor releases are now planned every week. This way security improvements can be delivered faster.
  • For Android U+ users, Chrome is migrating Share functionality from its custom share sheet to the Android system share sheet.
  • A Google Search side panel.
  • X25519Kyber768 key encapsulation for TLS.
  • Improved performance of the Memory Saver and Energy Saver modes.
  • Anti-phishing telemetry expansion.
  • Enabling BFCache for pages that set Cache-Control: no-store.
  • Idle Timeout policies on Desktop.
  • OS-native Passkey changes on Windows 11.

More details on all of these features can be found on the Chrome Status page. As always, Google takes its time with putting out a larger blog post covering the most important changes however, you can find a very brief summary of the Chrome 116 release on the Chrome release page.

With the report below, you can easily find which computers in your network do not have this latest Chrome version installed. Simply run the report to get a complete overview of your environment.

Chrome 116 Lansweeper On-Prem Query

Severity CVE Description
High CVE-2023-2312 Use after free in Offline
High CVE-2023-4349 Use after free in Device Trust Connectors
High CVE-2023-4350 Inappropriate implementation in Fullscreen
High CVE-2023-4351 Use after free in Network
High CVE-2023-4352 Type Confusion in V8
High CVE-2023-4353 Heap buffer overflow in ANGLE
High CVE-2023-4354 Heap buffer overflow in Skia
High CVE-2023-4355 Out of bounds memory access in V8
Medium CVE-2023-4356 Use after free in Audio
Medium CVE-2023-4357 Insufficient validation of untrusted input in XML
Medium CVE-2023-4358 Use after free in DNS
Medium CVE-2023-4359 Inappropriate implementation in App Launcher
Medium CVE-2023-4360 Inappropriate implementation in Color
Medium CVE-2023-4361 Inappropriate implementation in Autofill
Medium CVE-2023-4362 Heap buffer overflow in Mojom IDL
Medium CVE-2023-4363 Inappropriate implementation in WebShare
Medium CVE-2023-4364
Inappropriate implementation in Permission Prompts
Medium CVE-2023-4365 Inappropriate implementation in Fullscreen
Medium CVE-2023-4366 Use after free in Extensions
Medium CVE-2023-4367
Insufficient policy enforcement in Extensions API
Medium CVE-2023-4368
Insufficient policy enforcement in Extensions API

 

Google Chrome 116 CVE Codes

Select Top 1000000 tblAssets.AssetID,
tblAssets.AssetName,
tblAssets.Domain,
tsysAssetTypes.AssetTypename As AssetType,
tblAssets.Username,
tblAssets.Userdomain,
Coalesce(tsysOS.Image, tsysAssetTypes.AssetTypeIcon10) As icon,
tblAssets.IPAddress,
Software.softwareName As Software,
Software.softwareVersion As Version,
Software.SoftwarePublisher As Publisher,
tsysIPLocations.IPLocation,
tblAssetCustom.Manufacturer,
tblAssetCustom.Model,
Coalesce(tsysOS.OSname, tblSccmAsset.OsCaption,
tblSccmAsset.OperatingSystemNameandVersion) As OS,
tblAssets.Version As OSVersion,
Case
When tblErrors.ErrorText Is Not Null Or
tblErrors.ErrorText != '' Then
'Scanning Error: ' + tsysasseterrortypes.ErrorMsg
Else ''
End As ScanningErrors,
tblAssets.Lastseen As [Last successful scan],
tblAssets.Lasttried As [Last scan attempt]
From tblAssets
Inner Join tblAssetCustom On tblAssets.AssetID = tblAssetCustom.AssetID
Inner Join tsysAssetTypes On tsysAssetTypes.AssetType = tblAssets.Assettype
Inner Join tsysIPLocations On tsysIPLocations.LocationID =
tblAssets.LocationID
Inner Join tblState On tblState.State = tblAssetCustom.State
Left Join (Select tblsoftware.assetid,
tblSoftwareUni.softwareName,
tblsoftware.softwareVersion,
Case
When tblSoftwareUni.softwareName Like '%Google Chrome%' And
((Cast(ParseName(tblsoftware.softwareVersion, 4) As int) < 116) Or
(Cast(ParseName(tblsoftware.softwareVersion, 4) As int) = 116 And
Cast(ParseName(tblsoftware.softwareVersion, 2) As int) < 5845) Or
(Cast(ParseName(tblsoftware.softwareVersion, 4) As int) = 116 And
Cast(ParseName(tblsoftware.softwareVersion, 2) As int) = 5845 And
Cast(ParseName(tblsoftware.softwareVersion, 1) As int) < 96)) Then 1
Else 0
End As [out of date],
tblSoftwareUni.SoftwarePublisher
From tblsoftware
Inner Join tblSoftwareUni On tblSoftwareUni.SoftID = tblsoftware.softID
Where tblSoftwareUni.softwareName Like '%Google Chrome%' And
tblSoftwareUni.SoftwarePublisher Like '%Google%') As Software On
Software.AssetID = tblAssets.AssetID
Left Outer Join tsysOS On tsysOS.OScode = tblAssets.OScode
Left Outer Join tblSccmAsset On tblAssets.AssetID = tblSccmAsset.AssetId
Left Join (Select Distinct Top 1000000 tblErrors.AssetID As ID,
Max(tblErrors.Teller) As ErrorID
From tblErrors
Group By tblErrors.AssetID) As ScanningError On tblAssets.AssetID =
ScanningError.ID
Left Join tblErrors On ScanningError.ErrorID = tblErrors.Teller
Left Join tsysasseterrortypes On tsysasseterrortypes.Errortype =
tblErrors.ErrorType
Where Software.softwareName Like '%Google Chrome%' And
Software.SoftwarePublisher Like '%Google%' And tblState.Statename = 'Active'
And Software.[out of date] = 1
Union
Select Top 1000000 tblAssets.AssetID,
tblAssets.AssetName,
tblAssets.Domain,
tsysAssetTypes.AssetTypename As AssetType,
tblAssets.Username,
tblAssets.Userdomain,
tsysAssetTypes.AssetTypeIcon10 As icon,
tblAssets.IPAddress,
Software.softwareName As Software,
Software.Version As Version,
Software.SoftwarePublisher As Publisher,
tsysIPLocations.IPLocation,
tblAssetCustom.Manufacturer,
tblAssetCustom.Model,
tblMacOSInfo.SystemVersion As OS,
tblAssets.Version As OSVersion,
Case
When tblErrors.ErrorText Is Not Null Or
tblErrors.ErrorText != '' Then
'Scanning Error: ' + tsysasseterrortypes.ErrorMsg
Else ''
End As ScanningErrors,
tblAssets.Lastseen As [Last successful scan],
tblAssets.Lasttried As [Last scan attempt]
From tblAssets
Inner Join tblAssetCustom On tblAssets.AssetID = tblAssetCustom.AssetID
Inner Join tsysAssetTypes On tsysAssetTypes.AssetType = tblAssets.Assettype
Inner Join tsysIPLocations On tsysIPLocations.LocationID =
tblAssets.LocationID
Inner Join tblState On tblState.State = tblAssetCustom.State
Left Join (Select tblMacApplications.assetid,
tblSoftwareUni.softwareName,
tblMacApplications.Version,
Case
When tblSoftwareUni.softwareName Like '%Google Chrome%' And
((Cast(ParseName(tblMacApplications.Version, 4) As int) < 116) Or
(Cast(ParseName(tblMacApplications.Version, 4) As int) = 116
And Cast(ParseName(tblMacApplications.Version, 2) As int) < 5845) Or
(Cast(ParseName(tblMacApplications.Version, 4) As int) = 116
And Cast(ParseName(tblMacApplications.Version, 2) As int) = 5845 And
Cast(ParseName(tblMacApplications.Version, 1) As int) < 96)) Then 1
Else 0
End As [out of date],
tblSoftwareUni.SoftwarePublisher
From tblMacApplications
Inner Join tblSoftwareUni On tblSoftwareUni.SoftID =
tblMacApplications.softid
Where tblSoftwareUni.softwareName Like '%Google Chrome%') As Software On
Software.AssetID = tblAssets.AssetID
Inner Join tblMacOSInfo On tblMacOSInfo.AssetID = tblAssets.AssetID
Left Join (Select Distinct Top 1000000 tblErrors.AssetID As ID,
Max(tblErrors.Teller) As ErrorID
From tblErrors
Group By tblErrors.AssetID) As ScanningError On tblAssets.AssetID =
ScanningError.ID
Left Join tblErrors On ScanningError.ErrorID = tblErrors.Teller
Left Join tsysasseterrortypes On tsysasseterrortypes.Errortype =
tblErrors.ErrorType
Where Software.softwareName Like '%Google Chrome%' And tblState.Statename =
'Active' And Software.[out of date] = 1
Union
Select Top 1000000 tblAssets.AssetID,
tblAssets.AssetName,
tblAssets.Domain,
tsysAssetTypes.AssetTypename As AssetType,
tblLinuxUser.UserName,
tblAssets.Userdomain,
tsysAssetTypes.AssetTypeIcon10 As icon,
tblAssets.IPAddress,
subquery1.Software,
subquery1.Version,
subquery1.Publisher,
tsysIPLocations.IPLocation,
tblAssetCustom.Manufacturer,
tblAssetCustom.Model,
tblLinuxSystem.OSRelease As OS,
tblAssets.Version As OSVersion,
Case
When tblErrors.ErrorText Is Not Null Or
tblErrors.ErrorText != '' Then
'Scanning Error: ' + tsysasseterrortypes.ErrorMsg
Else ''
End As ScanningErrors,
tblAssets.Lastseen As [Last successful scan],
tblAssets.Lasttried As [Last scan attempt]
From tblAssets
Inner Join tblAssetCustom On tblAssets.AssetID = tblAssetCustom.AssetID
Inner Join tsysAssetTypes On tsysAssetTypes.AssetType = tblAssets.Assettype
Inner Join tsysIPLocations On tsysIPLocations.LocationID =
tblAssets.LocationID
Inner Join tblState On tblState.State = tblAssetCustom.State
Inner Join tblLinuxSystem On tblAssets.AssetID = tblLinuxSystem.AssetID
Inner Join tblLinuxUser On tblAssets.AssetID = tblLinuxUser.AssetID
Inner Join tblLinuxUserLogon On tblLinuxUserLogon.Id = tblLinuxUser.id
Inner Join (Select tblLinuxUser.AssetId,
Max(tblLinuxUserLogon.LogonTime) As MaxLogontime
From tblLinuxUser
Inner Join tblLinuxUserLogon On tblLinuxUserLogon.Id = tblLinuxUser.id
Group By tblLinuxUser.assetid) As subquery2 On subquery2.MaxLogontime =
tblLinuxUserLogon.LogonTime
Inner Join (Select tblSoftwareUni.softwareName As Software,
tblSoftwareUni.SoftwarePublisher As Publisher,
tblLinuxSoftware.LastChanged,
tblLinuxSoftware.assetid,
Case
When tblLinuxSoftware.Version Like '%-%' Then
Left(tblLinuxSoftware.Version, CharIndex('-',
tblLinuxSoftware.Version) - 1)
When tblLinuxSoftware.Version Like '%R%' Then
Left(tblLinuxSoftware.Version, CharIndex('R',
tblLinuxSoftware.Version) - 1)
Else tblLinuxSoftware.Version
End As Version
From tblLinuxSoftware
Inner Join tblSoftwareUni On tblSoftwareUni.SoftID =
tblLinuxSoftware.SoftwareUniID
Where tblSoftwareUni.softwareName = 'google-chrome-stable') As subquery1 On
subquery1.assetid = tblAssets.assetid
Left Join (Select Distinct Top 1000000 tblErrors.AssetID As ID,
Max(tblErrors.Teller) As ErrorID
From tblErrors
Group By tblErrors.AssetID) As ScanningError On tblAssets.AssetID =
ScanningError.ID
Left Join tblErrors On ScanningError.ErrorID = tblErrors.Teller
Left Join tsysasseterrortypes On tsysasseterrortypes.Errortype =
tblErrors.ErrorType
Where subquery1.Software = 'google-chrome-stable' And tblState.Statename =
'Active' And ((Cast(ParseName(subquery1.Version, 4) As int) < 116) Or
(Cast(ParseName(subquery1.Version, 4) As int) = 116 And
Cast(ParseName(subquery1.Version, 2) As int) < 5845) Or
(Cast(ParseName(subquery1.Version, 4) As int) = 116 And
Cast(ParseName(subquery1.Version, 2) As int) = 5845 And
Cast(ParseName(subquery1.Version, 1) As int) < 96))
Order By Domain,
AssetName,
Software

Show

Hide