Lucene search

K
debiancveDebian Security Bug TrackerDEBIANCVE:CVE-2022-3723
HistoryNov 01, 2022 - 11:15 p.m.

CVE-2022-3723

2022-11-0123:15:19
Debian Security Bug Tracker
security-tracker.debian.org
176
google chrome
type confusion
v8
heap corruption
crafted html page
cve-2022-3723
chromium security

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.018

Percentile

88.2%

Type confusion in V8 in Google Chrome prior to 107.0.5304.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.018

Percentile

88.2%