CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1862 – Debian Security Advisory 5148-1
https://notcve.org/view.php?id=CVE-2022-1862
28 May 2022 — Inappropriate implementation in Extensions in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to bypass profile restrictions via a crafted HTML page. Una implementación inapropiada en Extensions en Google Chrome versiones anteriores a 102.0.5005.61, permitía a un atacante que convenciera a un usuario de instalar una extensión maliciosa para omitir las restricciones de perfil por medio de una página HTML diseñada Multiple vulnerabilities have bee... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 1CVE-2022-1874 – Debian Security Advisory 5148-1
https://notcve.org/view.php?id=CVE-2022-1874
28 May 2022 — Insufficient policy enforcement in Safe Browsing in Google Chrome on Mac prior to 102.0.5005.61 allowed a remote attacker to bypass downloads protection policy via a crafted HTML page. Una aplicación insuficiente de la política en Safe Browsing en Google Chrome en Mac versiones anteriores a 102.0.5005.61, permitía a un atacante remoto omitir la política de protección de descargas por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and its derivatives, the worst of whic... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1854 – Debian Security Advisory 5148-1
https://notcve.org/view.php?id=CVE-2022-1854
28 May 2022 — Use after free in ANGLE in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en ANGLE en Google Chrome versiones anteriores a 102.0.5005.61, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and its derivatives, the worst of which could result in remote code execution. Versi... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html • CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1855 – Debian Security Advisory 5148-1
https://notcve.org/view.php?id=CVE-2022-1855
28 May 2022 — Use after free in Messaging in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en Messaging en Google Chrome versiones anteriores a 102.0.5005.61, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and its derivatives, the worst of which could result in remote code executio... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html • CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1870 – Debian Security Advisory 5148-1
https://notcve.org/view.php?id=CVE-2022-1870
28 May 2022 — Use after free in App Service in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. Un uso de memoria previamente liberada en App Service en Google Chrome versiones anteriores a 102.0.5005.61, permitía a un atacante que convencía a un usuario para que instalara una extensión maliciosa explotar potencialmente una corrupción de la pila por medio de una extensión de Chrome diseñada... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html • CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1859 – Debian Security Advisory 5148-1
https://notcve.org/view.php?id=CVE-2022-1859
28 May 2022 — Use after free in Performance Manager in Google Chrome prior to 102.0.5005.61 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en Performance Manager en Google Chrome versiones anteriores a 102.0.5005.61, permitía que un atacante remoto que convenciera a un usuario de participar en una interacción de usuario específica explotar potencialmente una corrupción de la pila p... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html • CWE-416: Use After Free •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1868 – Debian Security Advisory 5148-1
https://notcve.org/view.php?id=CVE-2022-1868
28 May 2022 — Inappropriate implementation in Extensions API in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted HTML page. Una implementación inapropiada es Extensions API en Google Chrome versiones anteriores a 102.0.5005.61, permitía que un atacante que convenciera a un usuario de instalar una extensión maliciosa omitir las restricciones de navegación por medio de una página HTML diseñada Multiple vulnerabilit... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1863 – Debian Security Advisory 5148-1
https://notcve.org/view.php?id=CVE-2022-1863
28 May 2022 — Use after free in Tab Groups in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension and specific user interaction. Un uso de memoria previamente liberada en Tab Groups en Google Chrome versiones anteriores a 102.0.5005.61, permitía a un atacante que convencía a un usuario de instalar una extensión maliciosa explotar potencialmente una corrupción de la pila por medio de una extensi... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html • CWE-416: Use After Free •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1867 – Debian Security Advisory 5148-1
https://notcve.org/view.php?id=CVE-2022-1867
28 May 2022 — Insufficient validation of untrusted input in Data Transfer in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to bypass same origin policy via a crafted clipboard content. Una comprobación insuficiente de las entradas no confiables en Data Transfer en Google Chrome versiones anteriores a 102.0.5005.61, permitía a un atacante remoto omitir la política de mismo origen por medio de un contenido del portapapeles diseñado Multiple vulnerabilities have been found in Chromium and its derivatives, t... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1858 – Debian Security Advisory 5148-1
https://notcve.org/view.php?id=CVE-2022-1858
28 May 2022 — Out of bounds read in DevTools in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to perform an out of bounds memory read via specific user interaction. Una lectura fuera de límites en DevTools en Google Chrome versiones anteriores a 102.0.5005.61, permitía a un atacante remoto llevar a cabo una lectura de memoria fuera de límites por medio de una interacción específica con el usuario Multiple vulnerabilities have been found in Chromium and its derivatives, the worst of which could result in ... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html • CWE-125: Out-of-bounds Read •