Lucene search
Ubuntu.comUB:CVE-2022-0609HistoryApr 05, 2022 - 12:00 a.m.
CVE-2022-0609
2022-04-0500:00:00
ubuntu.com
ubuntu.com
42
cve-2022-0609; use after free; animation; google chrome; heap corruption; crafted html page; remote attacker; debian; ubuntu; chromium snap; unix
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.041
Percentile
92.2%
Use after free in Animation in Google Chrome prior to 98.0.4758.102 allowed
a remote attacker to potentially exploit heap corruption via a crafted HTML
page.
Notes
| Author | Note |
|---|---|
| alexmurray | The Debian chromium source package is called chromium-browser in Ubuntu |
| mdeslaur | starting with Ubuntu 19.10, the chromium-browser package is just a script that installs the Chromium snap |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 18.04 | noarch | chromium-browser | <Β 99.0.4844.51-0ubuntu0.18.04.1 | UNKNOWN |
Related
gitlab
gitlab
Use after free in Animation
2022-02-22 00:00:00
Use after free in Animation
2022-02-22 00:00:00
Use after free in Animation
2022-02-22 00:00:00
cnvd
cnvd
Google Chrome Animation code execution vulnerability
2022-02-16 00:00:00
hivepro
hivepro
First zero-day vulnerability of Google Chrome this year actively exploited in wild
2022-02-15 14:31:12
North Korean state-sponsored threat actor Lazarus Group exploiting Chrome Zero-day vulnerability
2022-03-25 14:16:43
Weekly Threat Digest: 21 β 27 March 2022
2022-03-29 13:56:10
mscve
mscve
Chromium: CVE-2022-0609 Use after free in Animation
2022-02-16 08:00:00
nvd
nvd
CVE-2022-0609
2022-04-05 00:15:17
thn
thn
attackerkb
attackerkb
CVE-2022-0609
2022-04-05 00:00:00
osv
osv
Use after free in Animation
2022-02-22 21:51:19
chromedriver-98.0.4758.102-1.1 on GA media
2024-06-15 00:00:00
chromium - security update
2022-02-17 00:00:00
cvelist
cvelist
CVE-2022-0609
2022-04-04 23:55:32
debiancve
debiancve
CVE-2022-0609
2022-04-05 00:15:17
veracode
veracode
Use After Free
2022-02-20 05:48:53
threatpost
threatpost
Google Chrome Zero-Day Bugs Exploited Weeks Ahead of Patch
2022-03-25 13:19:59
Google Patches Chromeβs Fifth Zero-Day of the Year
2022-08-18 14:31:38
Google Patches Actively Exploited Chrome Bug
2022-07-05 11:54:21
alpinelinux
alpinelinux
CVE-2022-0609
2022-04-05 00:15:17
github
github
Use after free in Animation
2022-02-22 21:51:19
checkpoint_advisories
checkpoint_advisories
Google Chrome Use After Free (CVE-2022-0609)
2022-03-27 00:00:00
prion
prion
Design/Logic Flaw
2022-04-05 00:15:00
cisa_kev
cisa_kev
Google Chromium Animation Use-After-Free Vulnerability
2022-02-15 00:00:00
schneier
schneier
Chrome Zero-Day from North Korea
2022-03-31 11:13:50
cve
cve
CVE-2022-0609
2022-04-05 00:15:17
malwarebytes
malwarebytes
Security vulnerabilities: 5 times that organizations got hacked
2022-06-21 10:04:02
Update now! Chrome patches actively exploited zero-day vulnerability
2022-02-15 13:50:16
ics
ics
Rockwell Automation Connected Components Workbench
2023-09-21 12:00:00
trellix
trellix
The Bug Report - February 2022 Edition
2022-03-02 00:00:00
The Bug Report - February 2022 Edition
2022-03-02 00:00:00
avleonov
avleonov
Microsoft Patch Tuesday March 2022
2022-03-14 17:33:28
nessus
nessus
Debian DSA-5079-1 : chromium - security update
2022-02-18 00:00:00
Microsoft Edge (Chromium) < 98.0.1108.55 Multiple Vulnerabilities
2022-02-16 00:00:00
openvas
openvas
kaspersky
kaspersky
KLA12464 Multiple vulnerabilities in Microsoft Browser
2022-02-16 00:00:00
KLA12462 Multiple vulnerabilities in Google Chrome
2022-02-14 00:00:00
suse
suse
Security update for chromium (important)
2022-02-17 00:00:00
Security update for opera (important)
2022-03-07 00:00:00
Security update for opera (important)
2022-04-08 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2022-02-14 00:00:00
debian
debian
[SECURITY] [DSA 5079-1] chromium security update
2022-02-17 22:13:55
chrome
chrome
Stable Channel Update for Desktop
2022-02-14 00:00:00
qualysblog
qualysblog
The 9th Google Chrome Zero-Day Threat this Year β Again Just Before the Weekend
2022-12-03 05:24:27
Managing CISA Known Exploited Vulnerabilities with Qualys VMDR
2022-02-23 05:39:00
cisa
cisa
CISA Adds Nine Known Exploited Vulnerabilities to Catalog
2022-02-15 00:00:00
securelist
securelist
IT threat evolution in Q1 2022. Non-mobile statistics
2022-05-27 08:00:05
IT threat evolution in Q2 2022. Non-mobile statistics
2022-08-15 12:00:43
gentoo
gentoo
Chromium, Google Chrome: Multiple vulnerabilities
2022-02-20 00:00:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.041
Percentile
92.2%
Related for UB:CVE-2022-0609