Use after free in Animation in Google Chrome prior to 98.0.4758.102 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

CPENameOperatorVersion
chromelt98.0.4758.102

CPE	Name	Operator	Version
	chrome	lt	98.0.4758.102

References

chromereleases.googleblog.com/2022/02/stable-channel-update-for-desktop_14.html

crbug.com/1296150

gitlab 9

hivepro 3

cnvd 1

mscve 1

thn 12

osv 2

ubuntucve 1

attackerkb 1

debiancve 1

github 1

checkpoint_advisories 1

schneier 1

cisa_kev 1

cve 1

veracode 1

alpinelinux 1

threatpost 4

malwarebytes 2

trellix 2

ics 1

avleonov 1

suse 3

nessus 7

openvas 5

kaspersky 1

debian 1

chrome 1

freebsd 1

cisa 1

qualysblog 2

securelist 2

gentoo 1

gitlab

Use after free in Animation

2022-02-22 00:00:00

Use after free in Animation

2022-02-22 00:00:00

Use after free in Animation

2022-02-22 00:00:00

hivepro

First zero-day vulnerability of Google Chrome this year actively exploited in wild

2022-02-15 14:31:12

North Korean state-sponsored threat actor Lazarus Group exploiting Chrome Zero-day vulnerability

2022-03-25 14:16:43

Weekly Threat Digest: 21 – 27 March 2022

2022-03-29 13:56:10

cnvd

Google Chrome Animation code execution vulnerability

2022-02-16 00:00:00

mscve

Chromium: CVE-2022-0609 Use after free in Animation

2022-02-16 08:00:00

thn

N.K. Hackers Employ Matryoshka Doll-Style Cascading Supply Chain Attack on 3CX

2023-04-21 09:55:00

New Chrome 0-Day Bug Under Active Attack – Update Your Browser ASAP!

2022-02-15 05:06:00

North Korean Hackers Exploited Chrome Zero-Day to Target Fintech, IT, and Media Firms

2022-03-25 06:45:00

osv

Use after free in Animation

2022-02-22 21:51:19

chromium - security update

2022-02-17 00:00:00

ubuntucve

CVE-2022-0609

2022-04-05 00:00:00

attackerkb

CVE-2022-0609

2022-04-05 00:00:00

debiancve

CVE-2022-0609

2022-04-05 00:15:00

github

Use after free in Animation

2022-02-22 21:51:19

checkpoint_advisories

Google Chrome Use After Free (CVE-2022-0609)

2022-03-27 00:00:00

schneier

Chrome Zero-Day from North Korea

2022-03-31 11:13:50

cisa_kev

Google Chromium Animation Use-After-Free Vulnerability

2022-02-15 00:00:00

cve

CVE-2022-0609

2022-04-05 00:15:00

veracode

Use After Free

2022-02-20 05:48:53

alpinelinux

CVE-2022-0609

2022-04-05 00:15:00

threatpost

Google Chrome Zero-Day Bugs Exploited Weeks Ahead of Patch

2022-03-25 13:19:59

Google Patches Actively Exploited Chrome Bug

2022-07-05 11:54:21

Google Patches Chrome’s Fifth Zero-Day of the Year

2022-08-18 14:31:38

malwarebytes

Security vulnerabilities: 5 times that organizations got hacked

2022-06-21 10:04:02

Update now! Chrome patches actively exploited zero-day vulnerability

2022-02-15 13:50:16

trellix

The Bug Report - February 2022 Edition

2022-03-02 00:00:00

The Bug Report - February 2022 Edition

2022-03-02 00:00:00

ics

Rockwell Automation Connected Components Workbench

2023-09-21 12:00:00

avleonov

Microsoft Patch Tuesday March 2022

2022-03-14 17:33:28

suse

Security update for chromium (important)

2022-02-17 00:00:00

Security update for opera (important)

2022-03-07 00:00:00

Security update for opera (important)

2022-04-08 00:00:00

nessus

openSUSE 15 Security Update : chromium (openSUSE-SU-2022:0042-1)

2022-02-22 00:00:00

Google Chrome < 98.0.4758.102 Multiple Vulnerabilities

2022-02-14 00:00:00

Google Chrome < 98.0.4758.102 Multiple Vulnerabilities

2022-02-14 00:00:00

openvas

Google Chrome Security Update (stable-channel-update-for-desktop_14-2022-02) - Mac OS X

2022-02-16 00:00:00

Google Chrome Security Update (stable-channel-update-for-desktop_14-2022-02) - Linux

2022-02-16 00:00:00

Google Chrome Security Update (stable-channel-update-for-desktop_14-2022-02) - Windows

2022-02-16 00:00:00

kaspersky

KLA12464 Multiple vulnerabilities in Microsoft Browser

2022-02-16 00:00:00

debian

[SECURITY] [DSA 5079-1] chromium security update

2022-02-17 22:13:55

chrome

Stable Channel Update for Desktop

2022-02-14 00:00:00

freebsd

chromium -- multiple vulnerabilities

2022-02-14 00:00:00

cisa

CISA Adds Nine Known Exploited Vulnerabilities to Catalog

2022-02-15 00:00:00

qualysblog

The 9th Google Chrome Zero-Day Threat this Year – Again Just Before the Weekend

2022-12-03 05:24:27

Managing CISA Known Exploited Vulnerabilities with Qualys VMDR

2022-02-23 05:39:00

securelist

IT threat evolution in Q1 2022. Non-mobile statistics

2022-05-27 08:00:05

IT threat evolution in Q2 2022. Non-mobile statistics

2022-08-15 12:00:43

gentoo

Chromium, Google Chrome: Multiple vulnerabilities

2022-02-20 00:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.057 Low

EPSS

Percentile

93.1%

JSON

Related for PRION:CVE-2022-0609