Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSDB582A85A-BA4A-11EC-8D1E-3065EC8FD3EC
HistoryApr 11, 2022 - 12:00 a.m.

Chromium -- mulitple vulnerabilities

2022-04-1100:00:00
vuxml.freebsd.org
28

9.6 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

72.2%

JSON

Chrome Releases reports:

This release contains 11 security fixes, including:

[1285234] High CVE-2022-1305: Use after free in storage. Reported by Anonymous on 2022-01-07
[1299287] High CVE-2022-1306: Inappropriate implementation in compositing. Reported by Sven Dysthe on 2022-02-21
[1301873] High CVE-2022-1307: Inappropriate implementation in full screen. Reported by Irvan Kurniawan (sourc7) on 2022-03-01
[1283050] High CVE-2022-1308: Use after free in BFCache. Reported by Samet Bekmezci (@sametbekmezci) on 2021-12-28
[1106456] High CVE-2022-1309: Insufficient policy enforcement in developer tools. Reported by David Erceg on 2020-07-17
[1307610] High CVE-2022-1310: Use after free in regular expressions. Reported by Brendon Tiszka on 2022-03-18
[1310717] High CVE-2022-1311: Use after free in Chrome OS shell. Reported by Nan Wang (@eternalsakura13) and Guang Gong of 360 Alpha Lab on 2022-03-28
[1311701] High CVE-2022-1312: Use after free in storage. Reported by Leecraso and Guang Gong of 360 Vulnerability Research Institute on 2022-03-30
[1270539] Medium CVE-2022-1313: Use after free in tab groups. Reported by Thomas Orlita on 2021-11-16
[1304658] Medium CVE-2022-1314: Type Confusion in V8. Reported by Bohan Liu (@P4nda20371774) of Tencent Security Xuanwu Lab on 2022-03-09

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchchromium< 100.0.4896.88UNKNOWN

Related

nessus 6
debian 1
osv 1
chrome 1
openvas 6
kaspersky 2
fedora 3
mageia 1
suse 2
ubuntucve 10
debiancve 10
alpinelinux 3
mscve 9
veracode 10
prion 10
cve 10
gentoo 1
nessus
nessus
FreeBSD : Chromium -- mulitple vulnerabilities (b582a85a-ba4a-11ec-8d1e-3065ec8fd3ec)
2022-04-12 00:00:00
Debian DSA-5120-1 : chromium - security update
2022-04-19 00:00:00
Google Chrome < 100.0.4896.88 Multiple Vulnerabilities
2022-04-11 00:00:00
debian
debian
[SECURITY] [DSA 5120-1] chromium security update
2022-04-13 06:27:12
osv
osv
chromium - security update
2022-04-13 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2022-04-11 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-5120-1)
2022-04-20 00:00:00
Fedora: Security Advisory for chromium (FEDORA-2022-59297c8fcd)
2022-05-08 00:00:00
Fedora: Security Advisory for chromium (FEDORA-2022-0f14e2308e)
2022-05-04 00:00:00
kaspersky
kaspersky
KLA12500 Multiple vulnerabilities in Google Chrome
2022-04-11 00:00:00
KLA12513 Multiple vulnerabilities in Microsoft Browser
2022-04-15 00:00:00
fedora
fedora
[SECURITY] Fedora 35 Update: chromium-100.0.4896.127-1.fc35
2022-05-03 14:55:22
[SECURITY] Fedora 36 Update: chromium-100.0.4896.127-1.fc36
2022-05-07 05:11:33
[SECURITY] Fedora 34 Update: chromium-100.0.4896.127-1.fc34
2022-05-03 14:58:26
mageia
mageia
Updated chromium-browser-stable packages fix security vulnerability
2022-04-18 23:00:03
suse
suse
Security update for libqt5-qtwebengine (moderate)
2022-07-10 00:00:00
Security update for chromium (important)
2022-04-13 00:00:00
ubuntucve
ubuntucve
CVE-2022-1314
2022-07-25 00:00:00
CVE-2022-1306
2022-07-25 00:00:00
CVE-2022-1313
2022-07-25 00:00:00
debiancve
debiancve
CVE-2022-1314
2022-07-25 14:15:00
CVE-2022-1313
2022-07-25 14:15:00
CVE-2022-1306
2022-07-25 14:15:00
alpinelinux
alpinelinux
CVE-2022-1314
2022-07-25 14:15:00
CVE-2022-1310
2022-07-25 14:15:00
CVE-2022-1305
2022-07-25 14:15:00
mscve
mscve
Chromium: CVE-2022-1314 Type Confusion in V8
2022-04-15 07:00:00
Chromium: CVE-2022-1313 Use after free in tab groups
2022-04-15 07:00:00
Chromium: CVE-2022-1309 Insufficient policy enforcement in developer tools
2022-04-15 07:00:00
veracode
veracode
Type Confusion
2022-04-17 09:57:41
Insufficient Policy Enforcement
2022-04-17 09:57:54
Use-After-Free
2022-04-17 09:57:40
prion
prion
Type confusion
2022-07-25 14:15:00
Design/Logic Flaw
2022-07-25 14:15:00
Design/Logic Flaw
2022-07-25 14:15:00
cve
cve
CVE-2022-1314
2022-07-25 14:15:00
CVE-2022-1306
2022-07-25 14:15:00
CVE-2022-1313
2022-07-25 14:15:00
gentoo
gentoo
Chromium, Google Chrome, Microsoft Edge, QtWebEngine: Multiple Vulnerabilities
2022-08-14 00:00:00

9.6 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

72.2%

JSON
Related for B582A85A-BA4A-11EC-8D1E-3065EC8FD3EC
nessus6debian1osv1chrome1openvas6kaspersky2fedora3mageia1suse2ubuntucve10debiancve10alpinelinux3mscve9veracode10prion10cve10gentoo1