CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1865 – Debian Security Advisory 5148-1
https://notcve.org/view.php?id=CVE-2022-1865
28 May 2022 — Use after free in Bookmarks in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension and specific user interaction. Un uso de memoria previamente liberada en Bookmarks en Google Chrome versiones anteriores a 102.0.5005.61, permitía a un atacante que convencía a un usuario de instalar una extensión maliciosa explotar potencialmente una corrupción de la pila por medio de una extensión... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html • CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1866 – Debian Security Advisory 5148-1
https://notcve.org/view.php?id=CVE-2022-1866
28 May 2022 — Use after free in Tablet Mode in Google Chrome on Chrome OS prior to 102.0.5005.61 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via specific user interactions. Un uso de memoria previamente liberada en Tablet Mode en Google Chrome en Chrome OS versiones anteriores a 102.0.5005.61, permitía que un atacante remoto que convenciera a un usuario de participar en interacciones de usuario específicas explotara potencialmente una corru... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html • CWE-416: Use After Free •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1875 – Debian Security Advisory 5148-1
https://notcve.org/view.php?id=CVE-2022-1875
28 May 2022 — Inappropriate implementation in PDF in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Una implementación inapropiada en PDF en Google Chrome versiones anteriores a 102.0.5005.61, permitía a un atacante remoto filtrar datos de origen cruzado por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and its derivatives, the worst of which could result in remote code execution. Versions less than 5.15.5_p2022061... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_24.html • CWE-668: Exposure of Resource to Wrong Sphere •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2022-1633 – Gentoo Linux Security Advisory 202208-25
https://notcve.org/view.php?id=CVE-2022-1633
28 May 2022 — Use after free in Sharesheet in Google Chrome on Chrome OS prior to 101.0.4951.64 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via specific user interactions. Un uso de memoria previamente liberada en Sharesheet en Google Chrome en Chrome OS versiones anteriores a 101.0.4951.64, permitía a un atacante remoto que había convencido a un usuario de participar en interacciones de UI específicas para explotar potencialmente la corrupci... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_10.html • CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2022-1634 – Gentoo Linux Security Advisory 202208-25
https://notcve.org/view.php?id=CVE-2022-1634
28 May 2022 — Use after free in Browser UI in Google Chrome prior to 101.0.4951.64 allowed a remote attacker who had convinced a user to engage in specific UI interaction to potentially exploit heap corruption via specific user interactions. Un uso de memoria previamente liberada en Browser UI en Google Chrome versiones anteriores a 101.0.4951.64 permitía que un atacante remoto que hubiera convencido a un usuario de participar en una interacción específica de la UI explotara potencialmente la corrupción de la pila por me... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_10.html • CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2022-1635 – Gentoo Linux Security Advisory 202208-25
https://notcve.org/view.php?id=CVE-2022-1635
28 May 2022 — Use after free in Permission Prompts in Google Chrome prior to 101.0.4951.64 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via specific user interactions. Un uso de memoria previamente liberada en Permission Prompts en Google Chrome versiones anteriores a 101.0.4951.64, permitía a un atacante remoto que convencía a un usuario de participar en interacciones específicas de la interfaz de usuario explotar potencialmente la corrupción... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_10.html • CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2022-1636 – Gentoo Linux Security Advisory 202208-25
https://notcve.org/view.php?id=CVE-2022-1636
28 May 2022 — Use after free in Performance APIs in Google Chrome prior to 101.0.4951.64 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en Performance APIs en Google Chrome versiones anteriores a 101.0.4951.64, permitía a un atacante remoto explotar potencialmente la corrupción de la pila por medio de una página HTML diseñada. Multiple vulnerabilities have been found in Chromium and its derivatives, the worst of which could result in remote... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_10.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1638 – Debian Security Advisory 5134-1
https://notcve.org/view.php?id=CVE-2022-1638
28 May 2022 — Heap buffer overflow in V8 Internationalization in Google Chrome prior to 101.0.4951.64 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un desbordamiento del búfer de pila en V8 Internationalization en Google Chrome versiones anteriores a 101.0.4951.64, permitía a un atacante remoto explotar potencialmente la corrupción de la memoria intermedia por medio de una página HTML diseñada. Multiple security issues were discovered in Chromium, which could result in the exec... • https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_10.html • CWE-787: Out-of-bounds Write •
CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 1CVE-2022-1132 – Gentoo Linux Security Advisory 202208-25
https://notcve.org/view.php?id=CVE-2022-1132
28 Apr 2022 — Inappropriate implementation in Virtual Keyboard in Google Chrome on Chrome OS prior to 100.0.4896.60 allowed a local attacker to bypass navigation restrictions via physical access to the device. Una implementación inapropiada en Virtual Keyboard en Google Chrome en Chrome OS versiones anteriores a 100.0.4896.60, permitía a un atacante local omitir las restricciones de navegación por medio del acceso físico al dispositivo Multiple vulnerabilities have been found in Chromium and its derivatives, the worst of... • https://chromereleases.googleblog.com/2022/03/stable-channel-update-for-desktop_29.html • CWE-863: Incorrect Authorization •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 1CVE-2022-1477 – Gentoo Linux Security Advisory 202208-25
https://notcve.org/view.php?id=CVE-2022-1477
28 Apr 2022 — Use after free in Vulkan in Google Chrome prior to 101.0.4951.41 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en Vulkan en Google Chrome versiones anteriores a 101.0.4951.41, permitía a un atacante remoto explotar potencialmente la corrupción de la pila por medio de una página HTML diseñada. Multiple vulnerabilities have been found in Chromium and its derivatives, the worst of which could result in remote code execution. Ver... • https://chromereleases.googleblog.com/2022/04/stable-channel-update-for-desktop_26.html • CWE-416: Use After Free •