CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2022-1635 – Gentoo Linux Security Advisory 202208-25
https://notcve.org/view.php?id=CVE-2022-1635
28 May 2022 — Use after free in Permission Prompts in Google Chrome prior to 101.0.4951.64 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via specific user interactions. Un uso de memoria previamente liberada en Permission Prompts en Google Chrome versiones anteriores a 101.0.4951.64, permitía a un atacante remoto que convencía a un usuario de participar en interacciones específicas de la interfaz de usuario explotar potencialmente la corrupción... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_10.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1638 – Debian Security Advisory 5134-1
https://notcve.org/view.php?id=CVE-2022-1638
28 May 2022 — Heap buffer overflow in V8 Internationalization in Google Chrome prior to 101.0.4951.64 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un desbordamiento del búfer de pila en V8 Internationalization en Google Chrome versiones anteriores a 101.0.4951.64, permitía a un atacante remoto explotar potencialmente la corrupción de la memoria intermedia por medio de una página HTML diseñada. Multiple security issues were discovered in Chromium, which could result in the exec... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_10.html • CWE-787: Out-of-bounds Write •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1867 – Debian Security Advisory 5148-1
https://notcve.org/view.php?id=CVE-2022-1867
28 May 2022 — Insufficient validation of untrusted input in Data Transfer in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to bypass same origin policy via a crafted clipboard content. Una comprobación insuficiente de las entradas no confiables en Data Transfer en Google Chrome versiones anteriores a 102.0.5005.61, permitía a un atacante remoto omitir la política de mismo origen por medio de un contenido del portapapeles diseñado Multiple vulnerabilities have been found in Chromium and its derivatives, t... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1639 – Gentoo Linux Security Advisory 202208-25
https://notcve.org/view.php?id=CVE-2022-1639
28 May 2022 — Use after free in ANGLE in Google Chrome prior to 101.0.4951.64 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en ANGLE en Google Chrome versiones anteriores a 101.0.4951.64, permitía a un atacante remoto explotar potencialmente la corrupción de la pila por medio de una página HTML diseñada. Multiple vulnerabilities have been found in Chromium and its derivatives, the worst of which could result in remote code execution. Versi... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_10.html • CWE-416: Use After Free •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-1873 – Debian Security Advisory 5148-1
https://notcve.org/view.php?id=CVE-2022-1873
28 May 2022 — Insufficient policy enforcement in COOP in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Una aplicación insuficiente de la política en COOP en Google Chrome versiones anteriores a 102.0.5005.61, permitía a un atacante remoto filtrar datos de origen cruzado por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and its derivatives, the worst of which could result in remote code execution. Versions less tha... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html • CWE-668: Exposure of Resource to Wrong Sphere •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1853 – Debian Security Advisory 5148-1
https://notcve.org/view.php?id=CVE-2022-1853
28 May 2022 — Use after free in Indexed DB in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Un uso de memoria previamente liberada en Indexed DB en Google Chrome versiones anteriores a 102.0.5005.61, permitía a un atacante remoto llevar a cabo una fuga de la caja de arena a través de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and its derivatives, the worst of which could result in remote code execution. Ve... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html • CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1865 – Debian Security Advisory 5148-1
https://notcve.org/view.php?id=CVE-2022-1865
28 May 2022 — Use after free in Bookmarks in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension and specific user interaction. Un uso de memoria previamente liberada en Bookmarks en Google Chrome versiones anteriores a 102.0.5005.61, permitía a un atacante que convencía a un usuario de instalar una extensión maliciosa explotar potencialmente una corrupción de la pila por medio de una extensión... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html • CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1861 – Debian Security Advisory 5148-1
https://notcve.org/view.php?id=CVE-2022-1861
28 May 2022 — Use after free in Sharing in Google Chrome on Chrome OS prior to 102.0.5005.61 allowed a remote attacker who convinced a user to enage in specific user interactions to potentially exploit heap corruption via specific user interaction. Un uso de memoria previamente liberada en Sharing en Google Chrome en Chrome OS versiones anteriores a 102.0.5005.61, permitía a un atacante remoto que convenciera a un usuario de participar en interacciones específicas con el usuario explotar potencialmente una corrupción de ... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html • CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1863 – Debian Security Advisory 5148-1
https://notcve.org/view.php?id=CVE-2022-1863
28 May 2022 — Use after free in Tab Groups in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension and specific user interaction. Un uso de memoria previamente liberada en Tab Groups en Google Chrome versiones anteriores a 102.0.5005.61, permitía a un atacante que convencía a un usuario de instalar una extensión maliciosa explotar potencialmente una corrupción de la pila por medio de una extensi... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html • CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2022-1636 – Gentoo Linux Security Advisory 202208-25
https://notcve.org/view.php?id=CVE-2022-1636
28 May 2022 — Use after free in Performance APIs in Google Chrome prior to 101.0.4951.64 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en Performance APIs en Google Chrome versiones anteriores a 101.0.4951.64, permitía a un atacante remoto explotar potencialmente la corrupción de la pila por medio de una página HTML diseñada. Multiple vulnerabilities have been found in Chromium and its derivatives, the worst of which could result in remote... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_10.html • CWE-416: Use After Free •