ChromeCVELIST:CVE-2022-0801

HistoryJan 02, 2023 - 12:00 a.m.

CVE-2022-0801

2023-01-0200:00:00

Chrome

www.cve.org

google chrome

html parser

xss

remote attacker

vulnerability

AI Score

6.5

Confidence

High

EPSS

0.001

Percentile

36.0%

JSON

Inappropriate implementation in HTML parser in Google Chrome prior to 99.0.4844.51 allowed a remote attacker to bypass XSS preventions via a crafted HTML page. (Chrome security severity: Medium)

CNA Affected

[
  {
    "vendor": "Google",
    "product": "Chrome",
    "versions": [
      {
        "version": "unspecified",
        "lessThan": "99.0.4844.51",
        "status": "affected",
        "versionType": "custom"
      }
    ]
  }
]

References

chromereleases.googleblog.com/2022/03/stable-channel-update-for-desktop.html

crbug.com/1231037

CVE-2022-0801

CNA Affected

References

Related