CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2022-1641 – Gentoo Linux Security Advisory 202208-25
https://notcve.org/view.php?id=CVE-2022-1641
28 May 2022 — Use after free in Web UI Diagnostics in Google Chrome on Chrome OS prior to 101.0.4951.64 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via specific user interaction. Un uso de memoria previamente liberada en Web UI Diagnostics en Google Chrome en Chrome OS versiones anteriores a 101.0.4951.64 permitió que un atacante remoto que convenció a un usuario para participar en las interacciones específicas de la interfaz de usuario para ... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_10.html • CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1854 – Debian Security Advisory 5148-1
https://notcve.org/view.php?id=CVE-2022-1854
28 May 2022 — Use after free in ANGLE in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en ANGLE en Google Chrome versiones anteriores a 102.0.5005.61, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and its derivatives, the worst of which could result in remote code execution. Versi... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html • CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1870 – Debian Security Advisory 5148-1
https://notcve.org/view.php?id=CVE-2022-1870
28 May 2022 — Use after free in App Service in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. Un uso de memoria previamente liberada en App Service en Google Chrome versiones anteriores a 102.0.5005.61, permitía a un atacante que convencía a un usuario para que instalara una extensión maliciosa explotar potencialmente una corrupción de la pila por medio de una extensión de Chrome diseñada... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1857 – Debian Security Advisory 5148-1
https://notcve.org/view.php?id=CVE-2022-1857
28 May 2022 — Insufficient policy enforcement in File System API in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to bypass file system restrictions via a crafted HTML page. Una aplicación insuficiente de políticas en File System API de Google Chrome versiones anteriores a 102.0.5005.61, permitía a un atacante remoto omitir las restricciones del sistema de archivos por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and its derivatives, the worst of which could resu... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1869 – Debian Security Advisory 5148-1
https://notcve.org/view.php?id=CVE-2022-1869
28 May 2022 — Type Confusion in V8 in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Una confusión de tipo en V8 en Google Chrome versiones anteriores a 102.0.5005.61, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and its derivatives, the worst of which could result in remote code execution. Versions less than 5.15.5_p2... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 1CVE-2022-1874 – Debian Security Advisory 5148-1
https://notcve.org/view.php?id=CVE-2022-1874
28 May 2022 — Insufficient policy enforcement in Safe Browsing in Google Chrome on Mac prior to 102.0.5005.61 allowed a remote attacker to bypass downloads protection policy via a crafted HTML page. Una aplicación insuficiente de la política en Safe Browsing en Google Chrome en Mac versiones anteriores a 102.0.5005.61, permitía a un atacante remoto omitir la política de protección de descargas por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and its derivatives, the worst of whic... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1860 – Debian Security Advisory 5148-1
https://notcve.org/view.php?id=CVE-2022-1860
28 May 2022 — Use after free in UI Foundations in Google Chrome on Chrome OS prior to 102.0.5005.61 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via specific user interactions. Un uso de memoria previamente liberada en UI Foundations en Google Chrome en Chrome OS versiones anteriores a 102.0.5005.61, permitía que un atacante remoto que convenciera a un usuario de participar en una interacción de usuario específica explotar potencialmente una ... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html • CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1859 – Debian Security Advisory 5148-1
https://notcve.org/view.php?id=CVE-2022-1859
28 May 2022 — Use after free in Performance Manager in Google Chrome prior to 102.0.5005.61 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en Performance Manager en Google Chrome versiones anteriores a 102.0.5005.61, permitía que un atacante remoto que convenciera a un usuario de participar en una interacción de usuario específica explotar potencialmente una corrupción de la pila p... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1638 – Debian Security Advisory 5134-1
https://notcve.org/view.php?id=CVE-2022-1638
28 May 2022 — Heap buffer overflow in V8 Internationalization in Google Chrome prior to 101.0.4951.64 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un desbordamiento del búfer de pila en V8 Internationalization en Google Chrome versiones anteriores a 101.0.4951.64, permitía a un atacante remoto explotar potencialmente la corrupción de la memoria intermedia por medio de una página HTML diseñada. Multiple security issues were discovered in Chromium, which could result in the exec... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_10.html • CWE-787: Out-of-bounds Write •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1858 – Debian Security Advisory 5148-1
https://notcve.org/view.php?id=CVE-2022-1858
28 May 2022 — Out of bounds read in DevTools in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to perform an out of bounds memory read via specific user interaction. Una lectura fuera de límites en DevTools en Google Chrome versiones anteriores a 102.0.5005.61, permitía a un atacante remoto llevar a cabo una lectura de memoria fuera de límites por medio de una interacción específica con el usuario Multiple vulnerabilities have been found in Chromium and its derivatives, the worst of which could result in ... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html • CWE-125: Out-of-bounds Read •