CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 0CVE-2022-2610 – Gentoo Linux Security Advisory 202208-35
https://notcve.org/view.php?id=CVE-2022-2610
12 Aug 2022 — Insufficient policy enforcement in Background Fetch in Google Chrome prior to 104.0.5112.79 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Una aplicación insuficiente de políticas en Background Fetch en Google Chrome versiones anteriores a 104.0.5112.79, permitía a un atacante remoto filtrar datos de origen cruzado por medio de una página HTML diseñada. Multiple vulnerabilities have been found in Chromium and its derivatives, the worst of which could result in remote code execu... • https://chromereleases.googleblog.com/2022/08/stable-channel-update-for-desktop.html • CWE-668: Exposure of Resource to Wrong Sphere •
CVSS: 10.0EPSS: 0%CPEs: 3EXPL: 0CVE-2022-2609 – Gentoo Linux Security Advisory 202208-35
https://notcve.org/view.php?id=CVE-2022-2609
12 Aug 2022 — Use after free in Nearby Share in Google Chrome on Chrome OS prior to 104.0.5112.79 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via specific UI interactions. Un uso de la memoria previamente liberada en Nearby Share en Google Chrome en Chrome OS versiones anteriores a 104.0.5112.79, permitía a un atacante remoto que convencía a un usuario de participar en interacciones de usuario específicas explotar potencialmente la corrupci... • https://chromereleases.googleblog.com/2022/08/stable-channel-update-for-desktop.html • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 10.0EPSS: 0%CPEs: 3EXPL: 0CVE-2022-2608 – Gentoo Linux Security Advisory 202208-35
https://notcve.org/view.php?id=CVE-2022-2608
12 Aug 2022 — Use after free in Overview Mode in Google Chrome on Chrome OS prior to 104.0.5112.79 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via specific UI interactions. Un uso de la memoria previamente liberada en Overview Mode en Google Chrome en Chrome OS versiones anteriores a 104.0.5112.79, permitía a un atacante remoto que convencía a un usuario de participar en interacciones de usuario específicas para explotar potencialmente la c... • https://chromereleases.googleblog.com/2022/08/stable-channel-update-for-desktop.html • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 10.0EPSS: 0%CPEs: 3EXPL: 0CVE-2022-2607 – Gentoo Linux Security Advisory 202208-35
https://notcve.org/view.php?id=CVE-2022-2607
12 Aug 2022 — Use after free in Tab Strip in Google Chrome on Chrome OS prior to 104.0.5112.79 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via specific UI interactions. Un uso de la memoria previamente liberada en Tab Strip en Google Chrome en Chrome OS versiones anteriores a 104.0.5112.79, permitía a un atacante remoto que convencía a un usuario de participar en interacciones de usuario específicas para explotar potencialmente la corrupció... • https://chromereleases.googleblog.com/2022/08/stable-channel-update-for-desktop.html • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2022-2606 – Gentoo Linux Security Advisory 202208-35
https://notcve.org/view.php?id=CVE-2022-2606
12 Aug 2022 — Use after free in Managed devices API in Google Chrome prior to 104.0.5112.79 allowed a remote attacker who convinced a user to enable a specific Enterprise policy to potentially exploit heap corruption via a crafted HTML page. Un uso de la memoria previamente liberada en Managed devices API en Google Chrome versiones anteriores a 104.0.5112.79, permitía que un atacante remoto que convenciera a un usuario de habilitar una política de empresa específica explotara potencialmente la corrupción de la pila por m... • https://chromereleases.googleblog.com/2022/08/stable-channel-update-for-desktop.html • CWE-416: Use After Free •
CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 0CVE-2022-2605 – Gentoo Linux Security Advisory 202208-35
https://notcve.org/view.php?id=CVE-2022-2605
12 Aug 2022 — Out of bounds read in Dawn in Google Chrome prior to 104.0.5112.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. La lectura fuera de límites en Dawn en Google Chrome versiones anteriores a 104.0.5112.79, permitía a un atacante remoto explotar potencialmente la corrupción de la pila por medio de una página HTML diseñada. Multiple vulnerabilities have been found in Chromium and its derivatives, the worst of which could result in remote code execution. Versions less ... • https://chromereleases.googleblog.com/2022/08/stable-channel-update-for-desktop.html • CWE-125: Out-of-bounds Read •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2022-2604 – Gentoo Linux Security Advisory 202208-35
https://notcve.org/view.php?id=CVE-2022-2604
12 Aug 2022 — Use after free in Safe Browsing in Google Chrome prior to 104.0.5112.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de la memoria previamente liberada en Safe Browsing en Google Chrome versiones anteriores a 104.0.5112.79, permitía a un atacante remoto explotar potencialmente la corrupción de la pila por medio de una página HTML diseñada. Multiple vulnerabilities have been found in Chromium and its derivatives, the worst of which could result in remote co... • https://chromereleases.googleblog.com/2022/08/stable-channel-update-for-desktop.html • CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2022-2603 – Gentoo Linux Security Advisory 202208-35
https://notcve.org/view.php?id=CVE-2022-2603
12 Aug 2022 — Use after free in Omnibox in Google Chrome prior to 104.0.5112.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de la memoria previamente liberada en Omnibox en Google Chrome versiones anteriores a 104.0.5112.79, permitía a un atacante remoto explotar potencialmente la corrupción de la pila por medio de una página HTML diseñada. Multiple vulnerabilities have been found in Chromium and its derivatives, the worst of which could result in remote code execution... • https://chromereleases.googleblog.com/2022/08/stable-channel-update-for-desktop.html • CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2022-2587
https://notcve.org/view.php?id=CVE-2022-2587
12 Aug 2022 — Out of bounds write in Chrome OS Audio Server in Google Chrome on Chrome OS prior to 102.0.5005.125 allowed a remote attacker to potentially exploit heap corruption via crafted audio metadata. Una escritura fuera de límites en Chrome OS Audio Server en Google Chrome en Chrome OS versiones anteriores a 102.0.5005.125 permitía a un atacante remoto explotar potencialmente la corrupción de la pila por medio de metadatos de audio diseñados. • https://chromereleases.googleblog.com/2022/06/stable-channel-update-for-chromeos.html • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 1CVE-2022-2399
https://notcve.org/view.php?id=CVE-2022-2399
28 Jul 2022 — Use after free in WebGPU in Google Chrome prior to 100.0.4896.88 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente libarada en WebGPU en Google Chrome versiones anteriores a 100.0.4896.88, permitió a un atacante remoto explotar potencialmente la corrupción de la pila por medio de una página HTML diseñada • https://chromereleases.googleblog.com/2022/04/stable-channel-update-for-desktop_11.html • CWE-416: Use After Free •