CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-0297 – Debian Security Advisory 5054-1
https://notcve.org/view.php?id=CVE-2022-0297
28 Jan 2022 — Use after free in Vulkan in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en Vulkan en Google Chrome versiones anteriores a 97.0.4692.99, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or informa... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop_19.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-0295 – Debian Security Advisory 5054-1
https://notcve.org/view.php?id=CVE-2022-0295
28 Jan 2022 — Use after free in Omnibox in Google Chrome prior to 97.0.4692.99 allowed a remote attacker who convinced the user to engage is specific user interactions to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en Omnibox en Google Chrome versiones anteriores a 97.0.4692.99, permitía a un atacante remoto que convencía al usuario de participar en interacciones de usuario específicas para explotar potencialmente una corrupción de la pila por medio de una página HT... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop_19.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-0293 – Debian Security Advisory 5054-1
https://notcve.org/view.php?id=CVE-2022-0293
28 Jan 2022 — Use after free in Web packaging in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en Web packaging en Google Chrome versiones anteriores a 97.0.4692.99, permitía a un atacante remoto explotar potencialmente una corrupción de pila por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop_19.html • CWE-416: Use After Free •
CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 1CVE-2022-0113 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2022-0113
28 Jan 2022 — Inappropriate implementation in Blink in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Una implementación inapropiada en Blink en Google Chrome versiones anteriores a 97.0.4692.71, permitía a un atacante remoto filtrar datos de origen cruzado por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure. • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html • CWE-346: Origin Validation Error •
CVSS: 8.1EPSS: 0%CPEs: 4EXPL: 1CVE-2022-0114 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2022-0114
28 Jan 2022 — Out of bounds memory access in Blink Serial API in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page and virtual serial port driver. Un acceso a la memoria fuera de límites en Blink Serial API en Google Chrome versiones anteriores a 97.0.4692.71, permitía a un atacante remoto llevar a cabo una lectura de memoria fuera de límites por medio de una página HTML diseñada y un controlador de puerto serie virtual Multiple security issues w... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html • CWE-125: Out-of-bounds Read •
CVSS: 4.3EPSS: 0%CPEs: 4EXPL: 1CVE-2022-0110 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2022-0110
28 Jan 2022 — Incorrect security UI in Autofill in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. Una implementación incorrecta de la Interfaz de seguridad en Autofill en Google Chrome versiones anteriores a 97.0.4692.71, permitía a un atacante remoto falsificar el contenido de la Omnibox (barra de URL) por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arb... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html • CWE-1021: Improper Restriction of Rendered UI Layers or Frames •
CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 1CVE-2022-0111 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2022-0111
28 Jan 2022 — Inappropriate implementation in Navigation in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to incorrectly set origin via a crafted HTML page. Una implementación inapropiada en Navigation en Google Chrome versiones anteriores a 97.0.4692.71, permitía a un atacante remoto establecer incorrectamente el origen por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclos... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html • CWE-346: Origin Validation Error •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-0296 – Debian Security Advisory 5054-1
https://notcve.org/view.php?id=CVE-2022-0296
28 Jan 2022 — Use after free in Printing in Google Chrome prior to 97.0.4692.99 allowed a remote attacker who convinced the user to engage is specific user interactions to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en Printing en Google Chrome versiones anteriores a 97.0.4692.99, permitía a un atacante remoto que convencía al usuario de participar en interacciones de usuario específicas explotar potencialmente una corrupción de la pila por medio de una página HTML ... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop_19.html • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-0301 – Debian Security Advisory 5054-1
https://notcve.org/view.php?id=CVE-2022-0301
28 Jan 2022 — Heap buffer overflow in DevTools in Google Chrome prior to 97.0.4692.99 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. Un desbordamiento del búfer de la pila en DevTools en Google Chrome versiones anteriores a 97.0.4692.99, permitía a un atacante que convenciera a un usuario de instalar una extensión maliciosa explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada Multiple security iss... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop_19.html • CWE-416: Use After Free •
CVSS: 4.3EPSS: 0%CPEs: 4EXPL: 1CVE-2022-0112 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2022-0112
28 Jan 2022 — Incorrect security UI in Browser UI in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to display missing URL or incorrect URL via a crafted URL. Una implementación incorrecta de la Interfaz de seguridad en Browser UI en Google Chrome versiones anteriores a 97.0.4692.71, permitía a un atacante remoto mostrar una URL que faltaba o una URL incorrecta por medio de una URL diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial o... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html •