Lucene search
Ubuntu.comUB:CVE-2022-3044HistorySep 26, 2022 - 12:00 a.m.
CVE-2022-3044
2022-09-2600:00:00
ubuntu.com
ubuntu.com
15
google chrome
site isolation
remote attacker
compromised renderer process
bypass
crafted html page
ubuntu
debian
chromium snap
cve-2022-3044
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
EPSS
0.003
Percentile
68.3%
Inappropriate implementation in Site Isolation in Google Chrome prior to
105.0.5195.52 allowed a remote attacker who had compromised the renderer
process to bypass site isolation via a crafted HTML page.
Notes
| Author | Note |
|---|---|
| alexmurray | The Debian chromium source package is called chromium-browser in Ubuntu |
| mdeslaur | starting with Ubuntu 19.10, the chromium-browser package is just a script that installs the Chromium snap |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 18.04 | noarch | chromium-browser | < 105.0.5195.102-0ubuntu0.18.04.1 | UNKNOWN |
Related
cve
cve
CVE-2022-3044
2022-09-26 16:15:12
prion
prion
Design/Logic Flaw
2022-09-26 16:15:00
mscve
mscve
Chromium: CVE-2022-3044 Inappropriate implementation in Site Isolation
2022-09-01 16:04:56
veracode
veracode
Cross-site Scripting (XSS)
2022-09-16 19:25:29
nvd
nvd
CVE-2022-3044
2022-09-26 16:15:12
osv
osv
CVE-2022-3044
2022-09-26 16:15:12
chromedriver-105.0.5195.102-1.1 on GA media
2024-06-15 00:00:00
chromium - security update
2022-09-01 00:00:00
debiancve
debiancve
CVE-2022-3044
2022-09-26 16:15:12
cvelist
cvelist
CVE-2022-3044
2022-09-26 15:01:24
nessus
nessus
Microsoft Edge (Chromium) < 105.0.1343.25 Multiple Vulnerabilities
2022-09-02 00:00:00
FreeBSD : chromium -- multiple vulnerabilities (f2043ff6-2916-11ed-a1ef-3065ec8fd3ec)
2022-08-31 00:00:00
Debian DSA-5223-1 : chromium - security update
2022-09-02 00:00:00
kaspersky
kaspersky
KLA15734 Multiple vulnerabilities in Microsoft Browser
2022-09-01 00:00:00
KLA15732 Multiple vulnerabilities in Google Chrome
2022-08-30 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2022-0318)
2022-09-05 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2022-08-30 00:00:00
debian
debian
[SECURITY] [DSA 5223-1] chromium security update
2022-09-01 19:22:26
suse
suse
Security update for chromium (important)
2022-09-12 00:00:00
Security update for chromium (important)
2022-09-12 00:00:00
mageia
mageia
Updated chromium-browser-stable packages fix security vulnerability
2022-09-04 22:47:19
chrome
chrome
Stable Channel Update for Desktop
2022-08-30 00:00:00
gentoo
gentoo
Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities
2022-09-29 00:00:00
fedora
fedora
[SECURITY] Fedora 35 Update: chromium-105.0.5195.125-2.fc35
2022-10-05 01:05:03
[SECURITY] Fedora 37 Update: chromium-105.0.5195.125-2.fc37
2022-10-03 00:22:01
[SECURITY] Fedora 36 Update: chromium-105.0.5195.125-2.fc36
2022-10-05 01:01:54
rapid7blog
rapid7blog
Patch Tuesday - September 2022
2022-09-13 20:11:08
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
EPSS
0.003
Percentile
68.3%
Related for UB:CVE-2022-3044