Lucene search
ChromeVULNRICHMENT:CVE-2022-3038HistorySep 26, 2022 - 3:01 p.m.
CVE-2022-3038
2022-09-2615:01:19
Chrome
github.com
8
google chrome
network service
use after free
heap corruption
html page
cve-2022-3038
AI Score
7
Confidence
High
EPSS
0.346
Percentile
97.2%
SSVC
Exploitation
active
Automatable
no
Technical Impact
total
Use after free in Network Service in Google Chrome prior to 105.0.5195.52 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
ADP Affected
[
{
"cpes": [
"cpe:2.3:a:google:chrome:-:*:*:*:*:*:*:*"
],
"vendor": "google",
"product": "chrome",
"versions": [
{
"status": "affected",
"version": "-",
"lessThan": "105.0.5195.52",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*"
],
"vendor": "fedoraproject",
"product": "fedora",
"versions": [
{
"status": "affected",
"version": "37"
}
],
"defaultStatus": "unknown"
}
]References
packetstormsecurity.com/files/168596/Google-Chrome-103.0.5060.53-network-URLLoader-NotifyCompleted-Heap-Use-After-Free.html
chromereleases.googleblog.com/2022/08/stable-channel-update-for-desktop_30.html
crbug.com/1340253
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T4NMJURTG5RO3TGD7ZMIQ6Z4ZZ3SAVYE/
security.gentoo.org/glsa/202209-23
Related
debiancve
debiancve
CVE-2022-3038
2022-09-26 16:15:11
alpinelinux
alpinelinux
CVE-2022-3038
2022-09-26 16:15:11
attackerkb
attackerkb
CVE-2022-3038
2022-09-26 00:00:00
cve
cve
CVE-2022-3038
2022-09-26 16:15:11
prion
prion
Design/Logic Flaw
2022-09-26 16:15:00
nvd
nvd
CVE-2022-3038
2022-09-26 16:15:11
ubuntucve
ubuntucve
CVE-2022-3038
2022-09-26 00:00:00
mscve
mscve
Chromium: CVE-2022-3038 Use after free in Network Service
2022-09-01 16:04:48
osv
osv
CVE-2022-3038
2022-09-26 16:15:11
chromedriver-105.0.5195.102-1.1 on GA media
2024-06-15 00:00:00
chromium - security update
2022-09-01 00:00:00
veracode
veracode
Use After Free
2022-09-16 19:25:17
cisa_kev
cisa_kev
Google Chromium Network Service Use-After-Free Vulnerability
2023-03-30 00:00:00
cvelist
cvelist
CVE-2022-3038
2022-09-26 15:01:19
googleprojectzero
googleprojectzero
Analyzing a Modern In-the-wild Android Exploit
2023-09-19 00:00:00
thn
thn
kaspersky
kaspersky
KLA15734 Multiple vulnerabilities in Microsoft Browser
2022-09-01 00:00:00
KLA15732 Multiple vulnerabilities in Google Chrome
2022-08-30 00:00:00
nessus
nessus
Microsoft Edge (Chromium) < 105.0.1343.25 Multiple Vulnerabilities
2022-09-02 00:00:00
FreeBSD : chromium -- multiple vulnerabilities (f2043ff6-2916-11ed-a1ef-3065ec8fd3ec)
2022-08-31 00:00:00
Debian DSA-5223-1 : chromium - security update
2022-09-02 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2022-0318)
2022-09-05 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2022-08-30 00:00:00
debian
debian
[SECURITY] [DSA 5223-1] chromium security update
2022-09-01 19:22:26
suse
suse
Security update for chromium (important)
2022-09-12 00:00:00
Security update for chromium (important)
2022-09-12 00:00:00
mageia
mageia
Updated chromium-browser-stable packages fix security vulnerability
2022-09-04 22:47:19
chrome
chrome
Stable Channel Update for Desktop
2022-08-30 00:00:00
gentoo
gentoo
Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities
2022-09-29 00:00:00
fedora
fedora
[SECURITY] Fedora 35 Update: chromium-105.0.5195.125-2.fc35
2022-10-05 01:05:03
[SECURITY] Fedora 37 Update: chromium-105.0.5195.125-2.fc37
2022-10-03 00:22:01
[SECURITY] Fedora 36 Update: chromium-105.0.5195.125-2.fc36
2022-10-05 01:01:54
rapid7blog
rapid7blog
Patch Tuesday - September 2022
2022-09-13 20:11:08
AI Score
7
Confidence
High
EPSS
0.346
Percentile
97.2%
SSVC
Exploitation
active
Automatable
no
Technical Impact
total
Related for VULNRICHMENT:CVE-2022-3038