Lucene search
Ubuntu.comUB:CVE-2022-2477HistoryJul 28, 2022 - 12:00 a.m.
CVE-2022-2477
2022-07-2800:00:00
ubuntu.com
ubuntu.com
26
google chrome
guest view
use after free
vulnerability
exploit
heap corruption
html page
malicious extension
cve-2022-2477
ubuntu
debian
snap
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.003
Percentile
68.9%
Use after free in Guest View in Google Chrome prior to 103.0.5060.134
allowed an attacker who convinced a user to install a malicious extension
to potentially exploit heap corruption via a crafted HTML page.
Notes
| Author | Note |
|---|---|
| alexmurray | The Debian chromium source package is called chromium-browser in Ubuntu |
| mdeslaur | starting with Ubuntu 19.10, the chromium-browser package is just a script that installs the Chromium snap |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 18.04 | noarch | chromium-browser | < 103.0.5060.134-0ubuntu0.18.04.1 | UNKNOWN |
Related
debiancve
debiancve
CVE-2022-2477
2022-07-28 02:15:07
osv
osv
CVE-2022-2477
2022-07-28 02:15:07
chromedriver-103.0.5060.134-1.1 on GA media
2024-06-15 00:00:00
chromium - security update
2022-07-22 00:00:00
prion
prion
Design/Logic Flaw
2022-07-28 02:15:00
nvd
nvd
CVE-2022-2477
2022-07-28 02:15:07
alpinelinux
alpinelinux
CVE-2022-2477
2022-07-28 02:15:07
mscve
mscve
Chromium: CVE-2022-2477 Use after free in Guest View
2022-07-22 07:00:00
cve
cve
CVE-2022-2477
2022-07-28 02:15:07
veracode
veracode
Use-After-Free
2022-07-21 09:44:01
cvelist
cvelist
CVE-2022-2477
2022-07-28 00:00:00
malwarebytes
malwarebytes
Update Google Chrome now! New version includes 11 important security patches
2022-07-25 11:39:51
nessus
nessus
Microsoft Edge (Chromium) < 103.0.1264.71 Multiple Vulnerabilities
2022-07-23 00:00:00
FreeBSD : chromium -- multiple vulnerabilities (27cc4258-0805-11ed-8ac1-3065ec8fd3ec)
2022-07-20 00:00:00
Google Chrome < 103.0.5060.134 Multiple Vulnerabilities
2022-07-19 00:00:00
kaspersky
kaspersky
KLA12592 Multiple vulnerabilities in Microsoft Browser
2022-07-22 00:00:00
KLA12590 Multiple vulnerabilities in Google Chrome
2022-06-21 00:00:00
KLA12596 Multiple vulnerabilities in Opera
2022-07-28 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2022-0268)
2022-08-01 00:00:00
openSUSE: Security Advisory for chromium (openSUSE-SU-2022:10073-1)
2024-03-04 00:00:00
debian
debian
[SECURITY] [DSA 5187-1] chromium security update
2022-07-22 18:19:58
mageia
mageia
Updated chromium-browser-stable packages fix security vulnerability
2022-07-29 23:53:30
suse
suse
Security update for chromium (important)
2022-08-01 00:00:00
Security update for opera (important)
2022-08-16 00:00:00
Security update for opera (important)
2022-08-16 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2022-07-19 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2022-07-19 00:00:00
fedora
fedora
[SECURITY] Fedora 37 Update: chromium-115.0.5790.170-2.fc37
2023-08-19 00:48:25
[SECURITY] Fedora 38 Update: chromium-115.0.5790.170-1.fc38
2023-08-12 04:26:44
gentoo
gentoo
Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities
2022-08-21 00:00:00
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.003
Percentile
68.9%
Related for UB:CVE-2022-2477