Lucene search
ChromeVULNRICHMENT:CVE-2022-2856HistorySep 26, 2022 - 3:01 p.m.
CVE-2022-2856
2022-09-2615:01:12
Chrome
github.com
5
chrome
android
input validation
remote attacker
malicious website
html page
AI Score
6.2
Confidence
Low
EPSS
0.037
Percentile
92.0%
SSVC
Exploitation
active
Automatable
no
Technical Impact
partial
Insufficient validation of untrusted input in Intents in Google Chrome on Android prior to 104.0.5112.101 allowed a remote attacker to arbitrarily browse to a malicious website via a crafted HTML page.
ADP Affected
[
{
"cpes": [
"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*"
],
"vendor": "google",
"product": "chrome",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "104.0.5112.101",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*"
],
"vendor": "fedoraproject",
"product": "fedora",
"versions": [
{
"status": "affected",
"version": "37"
}
],
"defaultStatus": "unknown"
}
]Related
osv
osv
CVE-2022-2856
2022-09-26 16:15:11
chromium - security update
2022-08-18 00:00:00
kaspersky
kaspersky
KLA15723 DoS vulnerability in Microsoft Browser
2022-08-17 00:00:00
KLA15725 Multiple vulnerabilities in Opera
2022-08-23 00:00:00
KLA15722 Multiple vulnerabilities in Google Chrome
2022-08-16 00:00:00
hivepro
hivepro
Chromeβs zero-day flaw allows arbitrary code execution
2022-08-19 04:40:16
attackerkb
attackerkb
CVE-2022-2856
2022-09-26 00:00:00
ubuntucve
ubuntucve
CVE-2022-2856
2022-09-26 00:00:00
cnvd
cnvd
Google Chrome Intents security bypass vulnerability
2022-08-18 00:00:00
debiancve
debiancve
CVE-2022-2856
2022-09-26 16:15:11
cve
cve
CVE-2022-2856
2022-09-26 16:15:11
mscve
mscve
prion
prion
Input validation
2022-09-26 16:15:00
nessus
nessus
Microsoft Edge (Chromium) < 104.0.1293.60 Vulnerability
2022-08-18 00:00:00
openSUSE 15 Security Update : chromium (openSUSE-SU-2022:10099-1)
2022-08-26 00:00:00
Debian DSA-5212-1 : chromium - security update
2022-08-18 00:00:00
cvelist
cvelist
CVE-2022-2856
2022-09-26 15:01:12
openvas
openvas
Microsoft Edge (Chromium-Based) Input Validation Vulnerability (Aug 2022)
2022-08-19 00:00:00
openSUSE: Security Advisory for chromium (openSUSE-SU-2022:10099-1)
2024-03-04 00:00:00
veracode
veracode
Improper Input Validation
2022-09-01 10:44:46
cisa_kev
cisa_kev
Google Chromium Intents Insufficient Input Validation Vulnerability
2022-08-18 00:00:00
nvd
nvd
CVE-2022-2856
2022-09-26 16:15:11
malwarebytes
malwarebytes
Update Chrome now! Google issues patch for zero day spotted in the wild
2022-08-17 11:00:00
Zero-day puts a dent in Chrome's mojo
2022-09-05 16:30:00
thn
thn
New Google Chrome Zero-Day Vulnerability Being Exploited in the Wild
2022-08-17 12:02:00
Google Releases Urgent Chrome Update to Patch New Zero-Day Vulnerability
2022-09-03 03:56:00
threatpost
threatpost
Google Patches Chromeβs Fifth Zero-Day of the Year
2022-08-18 14:31:38
qualysblog
qualysblog
debian
debian
[SECURITY] [DSA 5212-1] chromium security update
2022-08-17 22:57:57
suse
suse
Security update for chromium (important)
2022-08-25 00:00:00
Security update for opera (important)
2022-08-29 00:00:00
Security update for opera (important)
2022-08-29 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2022-08-16 00:00:00
mageia
mageia
Updated chromium-browser-stable packages fix security vulnerability
2022-08-26 00:21:07
chrome
chrome
Stable Channel Update for Desktop
2022-08-16 00:00:00
avleonov
avleonov
gentoo
gentoo
Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities
2022-08-21 00:00:00
fedora
fedora
[SECURITY] Fedora 36 Update: chromium-105.0.5195.125-2.fc36
2022-10-05 01:01:54
[SECURITY] Fedora 37 Update: chromium-105.0.5195.125-2.fc37
2022-10-03 00:22:01
[SECURITY] Fedora 35 Update: chromium-105.0.5195.125-2.fc35
2022-10-05 01:05:03
AI Score
6.2
Confidence
Low
EPSS
0.037
Percentile
92.0%
SSVC
Exploitation
active
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2022-2856