Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
thnThe Hacker NewsTHN:0ADE883013E260B4548F6E16D65487D3
HistorySep 03, 2022 - 3:56 a.m.

Google Releases Urgent Chrome Update to Patch New Zero-Day Vulnerability

2022-09-0303:56:00
The Hacker News
thehackernews.com
127

0.042 Low

EPSS

Percentile

92.3%

JSON

Chrome Update

Google on Friday shipped emergency fixes to address a security vulnerability in the Chrome web browser that it said is being actively exploited in the wild.

The issue, assigned the identifier CVE-2022-3075, concerns a case of insufficient data validation in Mojo, which refers to a collection of runtime libraries that provide a platform-agnostic mechanism for inter-process communication (IPC).

An anonymous researcher has been credited with reporting the high-severity flaw on August 30, 2022.

β€œGoogle is aware of reports that an exploit for CVE-2022-3075 exists in the wild,” the internet giant said, without delving into additional specifics about the nature of the attacks to prevent additional threat actors from taking advantage of the flaw.

The latest update makes it the sixth zero-day vulnerability in Chrome that Google has resolved since the start of the year -

Users are recommended to upgrade to version 105.0.5195.102 for Windows, macOS, and Linux to mitigate potential threats. Users of Chromium-based browsers such as Microsoft Edge, Brave, Opera, and Vivaldi are also advised to apply the fixes as and when they become available.

Found this article interesting? Follow THN on Facebook, Twitter ο‚™ and LinkedIn to read more exclusive content we post.

Related

thn 12
malwarebytes 3
threatpost 3
qualysblog 3
cve 6
mscve 6
prion 6
debiancve 6
veracode 6
ubuntucve 6
cvelist 6
osv 10
checkpoint_advisories 2
alpinelinux 5
nvd 6
attackerkb 6
hivepro 6
cisa_kev 6
nessus 21
cnvd 2
openvas 26
redhatcve 1
suse 4
debian 3
kaspersky 10
avleonov 1
freebsd 3
ubuntu 1
mageia 1
chrome 5
fedora 3
gitlab 9
github 1
schneier 1
ics 1
qt 1
packetstorm 1
thn
thn
New Google Chrome Zero-Day Vulnerability Being Exploited in the Wild
2022-08-17 12:02:00
Google Issues Urgent Chrome Update to Patch Actively Exploited Zero-Day Vulnerability
2022-10-28 10:40:00
Update Google Chrome Browser to Patch New Zero-Day Exploit Detected in the Wild
2022-07-05 02:55:00
malwarebytes
malwarebytes
Zero-day puts a dent in Chrome's mojo
2022-09-05 16:30:00
Update now! Chrome patches ANOTHER zero-day vulnerability
2022-07-05 13:56:04
Update now! Google releases emergency patch for Chrome zero-day used in the wild
2022-03-28 13:42:54
threatpost
threatpost
Google Patches Chrome’s Fifth Zero-Day of the Year
2022-08-18 14:31:38
Google Patches Actively Exploited Chrome Bug
2022-07-05 11:54:21
Google Chrome Zero-Day Bugs Exploited Weeks Ahead of Patch
2022-03-25 13:19:59
qualysblog
qualysblog
The 9th Google Chrome Zero-Day Threat this Year – Again Just Before the Weekend
2022-12-03 05:24:27
Let Smart Automation Reduce the Risk of Zero-Day Attacks on Third-Party Applications
2022-09-07 22:24:12
Let Smart Automation Reduce the Risk of Zero-Day Attacks on Third-Party Applications
2022-09-08 17:52:58
cve
cve
CVE-2022-2294
2022-07-28 02:15:07
CVE-2022-2856
2022-09-26 16:15:11
CVE-2022-1364
2022-07-26 22:15:09
mscve
mscve
Chromium: CVE-2022-2294 Heap buffer overflow in WebRTC
2022-07-06 16:32:48
Chromium: CVE-2022-2856 Insufficient validation of untrusted input in Intents
2022-08-17 07:00:00
Chromium: CVE-2022-1364: Type Confusion in V8
2022-04-15 07:00:00
prion
prion
Heap overflow
2022-07-28 02:15:00
Type confusion
2022-07-26 22:15:00
Input validation
2022-09-26 16:15:00
debiancve
debiancve
CVE-2022-2294
2022-07-28 02:15:07
CVE-2022-2856
2022-09-26 16:15:11
CVE-2022-1364
2022-07-26 22:15:09
veracode
veracode
Heap Buffer Overflow
2022-07-17 17:23:34
Improper Input Validation
2022-09-01 10:44:46
Type Confusion
2022-04-17 09:55:05
ubuntucve
ubuntucve
CVE-2022-2294
2022-07-28 00:00:00
CVE-2022-1364
2022-07-26 00:00:00
CVE-2022-2856
2022-09-26 00:00:00
cvelist
cvelist
CVE-2022-2294
2022-07-28 00:00:00
CVE-2022-1364
2022-07-26 21:30:44
CVE-2022-2856
2022-09-26 15:01:12
osv
osv
CVE-2022-2294
2022-07-28 02:15:07
CVE-2022-2856
2022-09-26 16:15:11
chromium - security update
2022-04-16 00:00:00
checkpoint_advisories
checkpoint_advisories
Google Chrome WebRTC Heap Buffer Overflow (CVE-2022-2294)
2022-09-22 00:00:00
Google Chrome Use After Free (CVE-2022-0609)
2022-03-27 00:00:00
alpinelinux
alpinelinux
CVE-2022-2294
2022-07-28 02:15:07
CVE-2022-3075
2022-09-26 16:15:13
CVE-2022-1364
2022-07-26 22:15:09
nvd
nvd
CVE-2022-2294
2022-07-28 02:15:07
CVE-2022-1364
2022-07-26 22:15:09
CVE-2022-2856
2022-09-26 16:15:11
attackerkb
attackerkb
CVE-2022-2294
2022-07-28 00:00:00
CVE-2022-2856
2022-09-26 00:00:00
CVE-2022-1364
2022-07-26 00:00:00
hivepro
hivepro
Spyware Group Candiru exploits Chrome Zero-Day to Target Middle East
2022-07-28 06:06:37
Chrome’s zero-day flaw allows arbitrary code execution
2022-08-19 04:40:16
Google Chrome issues an emergency update to address the third zero-day of year 2022
2022-04-17 21:38:48
cisa_kev
cisa_kev
WebRTC Heap Buffer Overflow Vulnerability
2022-08-25 00:00:00
Google Chromium Intents Insufficient Input Validation Vulnerability
2022-08-18 00:00:00
Google Chromium V8 Type Confusion Vulnerability
2022-04-15 00:00:00
nessus
nessus
Debian DSA-5121-1 : chromium - security update
2022-04-19 00:00:00
Microsoft Edge (Chromium) < 104.0.1293.60 Vulnerability
2022-08-18 00:00:00
Google Chrome < 100.0.4896.127 Vulnerability
2022-04-14 00:00:00
cnvd
cnvd
Google Chrome Intents security bypass vulnerability
2022-08-18 00:00:00
Google Chrome Animation code execution vulnerability
2022-02-16 00:00:00
openvas
openvas
Microsoft Edge (Chromium-Based) Input Validation Vulnerability (Aug 2022)
2022-08-19 00:00:00
Google Chrome Security Update (stable-channel-update-for-desktop_14-2022-04) - Mac OS X
2022-04-19 00:00:00
Google Chrome Security Update (stable-channel-update-for-desktop_14-2022-04) - Linux
2022-04-19 00:00:00
redhatcve
redhatcve
CVE-2022-1364
2022-05-24 15:33:15
suse
suse
Security update for chromium (important)
2022-04-19 00:00:00
Security update for opera (important)
2022-05-02 00:00:00
Security update for opera (important)
2022-09-12 00:00:00
debian
debian
[SECURITY] [DSA 5121-1] chromium security update
2022-04-16 18:29:01
[SECURITY] [DSA 5110-1] chromium security update
2022-03-28 07:03:21
[SECURITY] [DSA 5225-1] chromium security update
2022-09-06 20:34:38
kaspersky
kaspersky
KLA12512 DoS vulnerability in Google Chrome
2022-04-14 00:00:00
KLA15723 DoS vulnerability in Microsoft Browser
2022-08-17 00:00:00
KLA12492 Type Confusion vulnerability in Microsoft Browser
2022-03-26 00:00:00
avleonov
avleonov
Vulristics May 2022 Update: CVSS redefinitions and bulk adding Microsoft products from MS CVE data
2022-05-23 20:56:15
freebsd
freebsd
chromium -- V8 type confusion
2022-03-25 00:00:00
chromium -- multiple vulnerabilities
2022-04-14 00:00:00
chromium -- insufficient data validation in Mojo
2022-09-02 00:00:00
ubuntu
ubuntu
Chromium vulnerability
2022-03-28 00:00:00
mageia
mageia
Updated chromium-browser-stable packages fix security vulnerability
2022-03-28 19:23:37
chrome
chrome
Stable Channel Update for Desktop
2022-04-14 00:00:00
Chrome for Android Update
2022-04-14 00:00:00
Stable Channel Update for Desktop
2022-09-02 00:00:00
fedora
fedora
[SECURITY] Fedora 34 Update: chromium-99.0.4844.84-1.fc34
2022-04-07 15:15:37
[SECURITY] Fedora 35 Update: chromium-99.0.4844.84-1.fc35
2022-04-07 15:26:48
[SECURITY] Fedora 36 Update: chromium-99.0.4844.84-1.fc36
2022-05-07 04:44:56
gitlab
gitlab
Use after free in Animation
2022-02-22 00:00:00
Use after free in Animation
2022-02-22 00:00:00
Use after free in Animation
2022-02-22 00:00:00
github
github
Use after free in Animation
2022-02-22 21:51:19
schneier
schneier
Chrome Zero-Day from North Korea
2022-03-31 11:13:50
ics
ics
Rockwell Products Impacted by Chromium Type Confusion
2022-07-28 12:00:00
qt
qt
Security advisory: Recently reported Chromium "Type confusion" issue impacts Qt WebEngine
2022-04-04 00:00:00
packetstorm
packetstorm
Chrome CVE-2022-1096 Incomplete Fix
2022-06-20 00:00:00

0.042 Low

EPSS

Percentile

92.3%

JSON
Related for THN:0ADE883013E260B4548F6E16D65487D3
thn12malwarebytes3threatpost3qualysblog3cve6mscve6prion6debiancve6veracode6ubuntucve6cvelist6osv10checkpoint_advisories2alpinelinux5nvd6attackerkb6hivepro6cisa_kev6nessus21cnvd2openvas26redhatcve1suse4debian3kaspersky10avleonov1freebsd3ubuntu1mageia1chrome5fedora3gitlab9github1schneier1ics1qt1packetstorm1