Lucene search
K

237 matches found

Cvelist
Cvelist
added 2023/01/02 12:0 a.m.34 views

CVE-2022-2742

Use after free in Exosphere in Google Chrome on Chrome OS and Lacros prior to 104.0.5112.79 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via crafted UI interactions. Chrome security severity: High...

9.3AI score0.00395EPSS
Exploits1References2
CNNVD
CNNVD
added 2023/01/02 12:0 a.m.5 views

Google Chrome 竞争条件问题漏洞

Google Chrome is a web browser from Google, Inc. in the United States. Google Chrome prior to version 104.0.5112.79 suffers from a Competitive Condition Issue vulnerability that stems from the presence of post-release reuse in Exosphere, which allows remote attackers to convince a user to engage ...

8.8CVSS8AI score0.00395EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2023/01/02 12:0 a.m.16 views

CVE-2022-2743

Integer overflow in Window Manager in Google Chrome on Chrome OS and Lacros prior to 104.0.5112.79 allowed a remote attacker who convinced a user to engage in specific UI interactions to perform an out of bounds memory write via crafted UI interactions. Chrome security severity: High...

7.2AI score0.00541EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/01/02 12:0 a.m.25 views

CVE-2022-2742

Use after free in Exosphere in Google Chrome on Chrome OS and Lacros prior to 104.0.5112.79 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via crafted UI interactions. Chrome security severity: High...

7.1AI score0.00395EPSS
Exploits1References2
CVE
CVE
added 2023/01/02 12:0 a.m.231 views

CVE-2022-2743

Mode C: The CVE-2022-2743 entry describes a concrete vulnerability in Google Chrome’s Window Manager on Chrome OS and Lacros, where an integer overflow can enable a remote attacker to cause an out-of-bounds memory write through crafted UI interactions. Affected software is Google Chrome on Chrome...

8.8CVSS8.5AI score0.00541EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2023/01/02 12:0 a.m.95 views

CVE-2022-2742

This CVE-2022-2742 describes a use-after-free in Exosphere affecting Google Chrome on Chrome OS and Lacros prior to 104.0.5112.79. The issue could allow a remote attacker, who lures a user into specific UI interactions, to potentially trigger heap corruption via crafted UI interactions. Evidence ...

8.8CVSS9AI score0.00395EPSS
Exploits1References2Affected Software1
Debian CVE
Debian CVE
added 2023/01/02 12:0 a.m.34 views

CVE-2022-2742

Use after free in Exosphere in Google Chrome on Chrome OS and Lacros prior to 104.0.5112.79 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via crafted UI interactions. Chrome security severity: High...

8.8CVSS9.1AI score0.00395EPSS
Exploits1
Debian CVE
Debian CVE
added 2023/01/02 12:0 a.m.50 views

CVE-2022-2743

Integer overflow in Window Manager in Google Chrome on Chrome OS and Lacros prior to 104.0.5112.79 allowed a remote attacker who convinced a user to engage in specific UI interactions to perform an out of bounds memory write via crafted UI interactions. Chrome security severity: High...

8.8CVSS9.1AI score0.00541EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2022/12/17 12:0 a.m.24 views

openSUSE 15 Security Update : chromium (openSUSE-SU-2022:10245-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:10245-1 advisory. - Use after free in Blink Media in Google Chrome prior to 108.0.5359.124 allowed a remote attacker to potentially exploit heap corruption...

8.8CVSS8.3AI score0.00651EPSS
Exploits0References12
OSV
OSV
added 2022/12/14 6:15 a.m.27 views

CVE-2022-4438

Use after free in Blink Frames in Google Chrome prior to 108.0.5359.124 allowed a remote attacker who convinced the user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.2AI score
Exploits0References4
OSV
OSV
added 2022/12/14 6:15 a.m.21 views

CVE-2022-4439

Use after free in Aura in Google Chrome on Windows prior to 108.0.5359.124 allowed a remote attacker who convinced the user to engage in specific UI interactions to potentially exploit heap corruption via specific UI interactions. Chromium security severity: High...

8.8CVSS6.4AI score
Exploits0References4
Prion
Prion
added 2022/12/14 6:15 a.m.24 views

Design/Logic Flaw

Use after free in Aura in Google Chrome on Windows prior to 108.0.5359.124 allowed a remote attacker who convinced the user to engage in specific UI interactions to potentially exploit heap corruption via specific UI interactions. Chromium security severity: High...

6.8CVSS8.9AI score0.00599EPSS
Exploits0References4Affected Software1
UbuntuCve
UbuntuCve
added 2022/12/14 6:15 a.m.32 views

CVE-2022-4439

Use after free in Aura in Google Chrome on Windows prior to 108.0.5359.124 allowed a remote attacker who convinced the user to engage in specific UI interactions to potentially exploit heap corruption via specific UI interactions. Chromium security severity: High...

8.8CVSS7.2AI score0.00599EPSS
Exploits0References3
Prion
Prion
added 2022/12/14 6:15 a.m.24 views

Design/Logic Flaw

Use after free in Blink Frames in Google Chrome prior to 108.0.5359.124 allowed a remote attacker who convinced the user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

6.8CVSS8.8AI score0.00651EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2022/12/14 12:0 a.m.140 views

CVE-2022-4438

CVE-2022-4438 describes a use-after-free in Blink Frames in Google Chrome/Chromium before 108.0.5359.124, where a remote attacker convincing a user to engage in specific UI interactions could trigger heap corruption via a crafted HTML page. Affected software: Google Chrome/Chromium (Blink Frames)...

8.8CVSS8.8AI score0.00651EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2022/12/14 12:0 a.m.106 views

CVE-2022-4439

CVE-2022-4439 is a use-after-free in Aura within Google Chrome for Windows, exploited via user-initiated UI interactions to potentially cause heap corruption. The vulnerability is part of a set of Chrome/Chromium issues disclosed in the December 2022 security updates, with Chrome’s stable channel...

8.8CVSS8.9AI score0.00599EPSS
Exploits0References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/12/14 12:0 a.m.33 views

FreeBSD : chromium -- multiple vulnerabilities (83eb9374-7b97-11ed-be8f-3065ec8fd3ec)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 83eb9374-7b97-11ed-be8f-3065ec8fd3ec advisory. - Use after free in Blink Media in Google Chrome prior to 108.0.5359.124 allowed a remote...

8.8CVSS8.3AI score0.00651EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2022/12/14 12:0 a.m.30 views

CVE-2022-4438

Use after free in Blink Frames in Google Chrome prior to 108.0.5359.124 allowed a remote attacker who convinced the user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS9.5AI score0.00651EPSS
Exploits0
Debian CVE
Debian CVE
added 2022/12/14 12:0 a.m.30 views

CVE-2022-4439

Use after free in Aura in Google Chrome on Windows prior to 108.0.5359.124 allowed a remote attacker who convinced the user to engage in specific UI interactions to potentially exploit heap corruption via specific UI interactions. Chromium security severity: High...

8.8CVSS9.7AI score0.00599EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/12/05 12:0 a.m.44 views

Debian DSA-5293-1 : chromium - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5293 advisory. Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure. For the...

8.8CVSS7.2AI score0.23918EPSS
Exploits1References47
Rows per page
Query Builder