Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kasperskyKaspersky LabKLA20108
HistoryDec 02, 2022 - 12:00 a.m.

KLA20108 DoS vulnerability in Google Chrome

2022-12-0200:00:00
Kaspersky Lab
threats.kaspersky.com
297
google chrome
type confusion
denial of service
vulnerability
exploitation
update
cve-2022-4262

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

8.8 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

73.9%

JSON

Type confusion vulnerability was found in Google Chrome. Malicious users can exploit this vulnerability to cause denial of service.

Original advisories

Stable Channel Update for Desktop

Exploitation

Public exploits exist for this vulnerability.

Related products

Google-Chrome

CVE list

CVE-2022-4262 critical

Solution

Update to the latest version

Download Google Chrome

Impacts

  • DoS

Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.

Affected Products

  • Google Chrome earlier than 108.0.5359.95

Related

nessus 8
openvas 6
attackerkb 1
alpinelinux 1
debian 1
hivepro 1
cve 1
veracode 1
nvd 1
ubuntucve 1
mscve 1
osv 2
prion 1
chrome 1
kaspersky 3
freebsd 1
cisa_kev 1
debiancve 1
cvelist 1
malwarebytes 1
githubexploit 1
trellix 2
googleprojectzero 1
thn 4
qualysblog 1
avleonov 1
mageia 1
altlinux 1
nessus
nessus
openSUSE 15 Security Update : chromium (openSUSE-SU-2022:10236-1)
2022-12-09 00:00:00
Google Chrome < 108.0.5359.94 Vulnerability
2022-12-02 00:00:00
Google Chrome < 108.0.5359.94 Vulnerability
2022-12-02 00:00:00
openvas
openvas
Google Chrome Security Update (stable-channel-update-for-desktop-2022-12) - Linux
2022-12-05 00:00:00
Google Chrome Security Update (stable-channel-update-for-desktop-2022-12) - Windows
2022-12-05 00:00:00
Debian: Security Advisory (DSA-5295-1)
2022-12-06 00:00:00
attackerkb
attackerkb
CVE-2022-4262
2022-12-02 00:00:00
alpinelinux
alpinelinux
CVE-2022-4262
2022-12-02 21:15:12
debian
debian
[SECURITY] [DSA 5295-1] chromium security update
2022-12-04 20:33:03
hivepro
hivepro
Google Chrome’s ninth zero-day in 2022
2022-12-06 06:19:49
cve
cve
CVE-2022-4262
2022-12-02 21:15:12
veracode
veracode
Type Confusion
2022-12-10 19:59:17
nvd
nvd
CVE-2022-4262
2022-12-02 21:15:12
ubuntucve
ubuntucve
CVE-2022-4262
2022-12-02 00:00:00
mscve
mscve
Chromium: CVE-2022-4262 Type Confusion in V8
2022-12-05 17:41:29
osv
osv
CVE-2022-4262
2022-12-02 21:15:12
chromium - security update
2022-12-04 00:00:00
prion
prion
Type confusion
2022-12-02 21:15:00
chrome
chrome
Stable Channel Update for Desktop
2022-12-02 00:00:00
kaspersky
kaspersky
KLA20198 DoS vulnerability in Opera
2022-12-14 00:00:00
KLA20200 DoS vulnerability in Opera
2022-12-15 00:00:00
KLA20109 Multiple vulnerabilities in Microsoft Browser
2022-12-05 00:00:00
freebsd
freebsd
chromium -- Type confusion in V8
2022-12-02 00:00:00
cisa_kev
cisa_kev
Google Chromium V8 Type Confusion Vulnerability
2022-12-05 00:00:00
debiancve
debiancve
CVE-2022-4262
2022-12-02 21:15:12
cvelist
cvelist
CVE-2022-4262
2022-12-02 00:00:00
malwarebytes
malwarebytes
Update now! Emergency fix for Google Chrome's V8 JavaScript engine zero-day flaw released
2022-12-05 22:30:00
githubexploit
githubexploit
Exploit for Type Confusion in Google Chrome
2024-01-24 11:58:54
trellix
trellix
The Bug Report December 2022 Edition
2023-01-04 00:00:00
The Bug Report December 2022 Edition
2023-01-04 00:00:00
googleprojectzero
googleprojectzero
Analyzing a Modern In-the-wild Android Exploit
2023-09-19 00:00:00
thn
thn
Google Releases Urgent Chrome Update to Fix Actively Exploited Zero-Day Vulnerability
2023-04-15 03:58:00
Critical libwebp Vulnerability Under Active Exploitation - Gets Maximum CVSS Score
2023-09-27 05:23:00
Google Rolls Out New Chrome Browser Update to Patch Yet Another Zero-Day Vulnerability
2022-12-03 04:41:00
qualysblog
qualysblog
The 9th Google Chrome Zero-Day Threat this Year – Again Just Before the Weekend
2022-12-03 05:24:27
avleonov
avleonov
Microsoft Patch Tuesday December 2022: SPNEGO RCE, Mark of the Web Bypass, Edge Memory Corruptions
2022-12-24 22:55:39
mageia
mageia
Updated chromium-browser-stable packages fix security vulnerability
2022-12-07 02:32:48
altlinux
altlinux
Security fix for the ALT Linux 10 package yandex-browser-stable version 23.1.2.1033-alt1
2023-04-04 00:00:00

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

8.8 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

73.9%

JSON
Related for KLA20108
nessus8openvas6attackerkb1alpinelinux1debian1hivepro1cve1veracode1nvd1ubuntucve1mscve1osv2prion1chrome1kaspersky3freebsd1cisa_kev1debiancve1cvelist1malwarebytes1githubexploit1trellix2googleprojectzero1thn4qualysblog1avleonov1mageia1altlinux1