CVE-2022-2295

🗓️ 28 Jul 2022 01:00:50Reported by ChromeType

cve🔗 web.nvd.nist.gov📰️ 3 Media mentions👁 251 Views

Type confusion in V8 in Google Chrome prior to 103.0.5060.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page

Reporter	Title	Published	Views	Family All 64
FreeBSD	chromium -- multiple vulnerabilities	4 Jul 202200:00	–	freebsd
ATTACKERKB	CVE-2022-2295	28 Jul 202202:15	–	attackerkb
AlpineLinux	CVE-2022-2295	28 Jul 202201:00	–	alpinelinux
AstraLinux	Astra Linux - уязвимость в chromium	3 May 202623:59	–	astralinux
Circl	CVE-2022-2295	5 Jul 202206:27	–	circl
CNNVD	Google Chrome 安全漏洞	4 Jul 202200:00	–	cnnvd
Cvelist	CVE-2022-2295	28 Jul 202201:00	–	cvelist
Debian	[SECURITY] [DSA 5180-1] chromium security update	11 Jul 202217:47	–	debian
Debian CVE	CVE-2022-2295	28 Jul 202201:00	–	debiancve
Tenable Nessus	Debian DSA-5180-1 : chromium - security update	12 Jul 202200:00	–	nessus

NVD

Vulners

Node

google chromeRange<103.0.5060.114

Node

fedoraproject extra_packages_for_enterprise_linuxMatch8.0

fedoraproject fedoraMatch35

fedoraproject fedoraMatch36

[
  {
    "product": "Chrome",
    "vendor": "Google",
    "versions": [
      {
        "lessThan": "103.0.5060.114",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5BQRTR4SIUNIHLLPWTGYSDNQK7DYCRSB/
crbug	www.crbug.com/1336869
security	www.security.gentoo.org/glsa/202208-35
chromereleases	www.chromereleases.googleblog.com/2022/07/stable-channel-update-for-desktop.html
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/H2C4XOJVIILDXTOSMWJXHSQNEXFWSOD7/

21 Nov 2024 07:00Current

8.4High risk

Vulners AI Score8.4

CVSS 3.18.8

EPSS0.01077

CWE-843

cve-2022-2295 type confusion v8 google chrome remote attacker heap corruption crafted html page nvd