Lucene search
Ubuntu.comUB:CVE-2022-3201HistorySep 26, 2022 - 12:00 a.m.
CVE-2022-3201
2022-09-2600:00:00
ubuntu.com
ubuntu.com
31
insufficient validation
devtools
bypassing navigation restrictions
google chrome
cve-2022-3201
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
EPSS
0.005
Percentile
77.3%
Insufficient validation of untrusted input in DevTools in Google Chrome on
Chrome OS prior to 105.0.5195.125 allowed an attacker who convinced a user
to install a malicious extension to bypass navigation restrictions via a
crafted HTML page. (Chromium security severity: High)
Notes
| Author | Note |
|---|---|
| alexmurray | The Debian chromium source package is called chromium-browser in Ubuntu |
| mdeslaur | starting with Ubuntu 19.10, the chromium-browser package is just a script that installs the Chromium snap |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 18.04 | noarch | chromium-browser | <Â 107.0.5304.87-0ubuntu11.18.04.1 | UNKNOWN |
Related
nvd
nvd
CVE-2022-3201
2022-09-26 16:15:13
cnvd
cnvd
Google Chrome Input Validation Error Vulnerability (CNVD-2022-81241)
2022-09-28 00:00:00
alpinelinux
alpinelinux
CVE-2022-3201
2022-09-26 16:15:13
debiancve
debiancve
CVE-2022-3201
2022-09-26 16:15:13
osv
osv
CVE-2022-3201
2022-09-26 16:15:13
chromium - security update
2022-09-15 00:00:00
chromium - security update
2022-09-28 00:00:00
cve
cve
CVE-2022-3201
2022-09-26 16:15:13
prion
prion
Input validation
2022-09-26 16:15:00
veracode
veracode
Restriction Bypass
2022-09-19 15:43:00
cvelist
cvelist
CVE-2022-3201
2022-09-26 00:00:00
suse
suse
Security update for opera (important)
2022-09-27 00:00:00
Security update for opera (important)
2022-09-26 00:00:00
Security update for chromium (important)
2022-09-17 00:00:00
nessus
nessus
openSUSE 15 Security Update : opera (openSUSE-SU-2022:10130-1)
2022-09-27 00:00:00
FreeBSD : chromium -- multiple vulnerabilities (b59847e0-346d-11ed-8fe9-3065ec8fd3ec)
2022-09-14 00:00:00
Google Chrome < 105.0.5195.125 Multiple Vulnerabilities
2022-09-14 00:00:00
openvas
openvas
chrome
chrome
Stable Channel Update for ChromeOS
2022-10-11 00:00:00
Stable Channel Update for Desktop
2022-09-14 00:00:00
Stable Channel Update for Desktop
2022-09-27 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2022-09-14 00:00:00
chromium -- multiple vulnerabilities
2022-09-27 00:00:00
debian
debian
[SECURITY] [DSA 5230-1] chromium security update
2022-09-15 18:57:39
[SECURITY] [DSA 5244-1] chromium security update
2022-09-28 19:41:14
kaspersky
kaspersky
KLA19253 Multiple vulnerabilities in Google Chrome
2022-09-14 00:00:00
mageia
mageia
Updated chromium-browser-stable packages fix security vulnerability
2022-10-05 08:23:49
gentoo
gentoo
Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities
2022-10-31 00:00:00
Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities
2022-09-29 00:00:00
QtWebEngine: Multiple Vulnerabilities
2023-11-25 00:00:00
fedora
fedora
[SECURITY] Fedora 36 Update: chromium-105.0.5195.125-2.fc36
2022-10-05 01:01:54
[SECURITY] Fedora 37 Update: chromium-105.0.5195.125-2.fc37
2022-10-03 00:22:01
[SECURITY] Fedora 35 Update: chromium-105.0.5195.125-2.fc35
2022-10-05 01:05:03
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
EPSS
0.005
Percentile
77.3%
Related for UB:CVE-2022-3201