CVSS: 4.3EPSS: 0%CPEs: 4EXPL: 1CVE-2022-0110 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2022-0110
28 Jan 2022 — Incorrect security UI in Autofill in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. Una implementación incorrecta de la Interfaz de seguridad en Autofill en Google Chrome versiones anteriores a 97.0.4692.71, permitía a un atacante remoto falsificar el contenido de la Omnibox (barra de URL) por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arb... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html • CWE-1021: Improper Restriction of Rendered UI Layers or Frames •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-0294 – Debian Security Advisory 5054-1
https://notcve.org/view.php?id=CVE-2022-0294
28 Jan 2022 — Inappropriate implementation in Push messaging in Google Chrome prior to 97.0.4692.99 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Una implementación inapropiada en Push messaging en Google Chrome versiones anteriores a 97.0.4692.99, permitía a un atacante remoto que hubiera comprometido el proceso de renderización omitir el aislamiento del sitio por medio de una página HTML diseñada Multiple security issues were discovered in Chromium,... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop_19.html •
CVSS: 8.8EPSS: 1%CPEs: 1EXPL: 0CVE-2022-0298 – Debian Security Advisory 5054-1
https://notcve.org/view.php?id=CVE-2022-0298
28 Jan 2022 — Use after free in Scheduling in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en Scheduling en Google Chrome versiones anteriores a 97.0.4692.99, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop_19.html • CWE-416: Use After Free •
CVSS: 4.3EPSS: 0%CPEs: 4EXPL: 1CVE-2022-0116 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2022-0116
28 Jan 2022 — Inappropriate implementation in Compositing in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. Una implementación inapropiada de Compositing en Google Chrome versiones anteriores a 97.0.4692.71, permitía a un atacante remoto falsificar el contenido de la Omnibox (barra de URL) por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, d... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html •
CVSS: 8.8EPSS: 1%CPEs: 1EXPL: 0CVE-2022-0295 – Debian Security Advisory 5054-1
https://notcve.org/view.php?id=CVE-2022-0295
28 Jan 2022 — Use after free in Omnibox in Google Chrome prior to 97.0.4692.99 allowed a remote attacker who convinced the user to engage is specific user interactions to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en Omnibox en Google Chrome versiones anteriores a 97.0.4692.99, permitía a un atacante remoto que convencía al usuario de participar en interacciones de usuario específicas para explotar potencialmente una corrupción de la pila por medio de una página HT... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop_19.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 1%CPEs: 2EXPL: 0CVE-2022-0300 – Debian Security Advisory 5054-1
https://notcve.org/view.php?id=CVE-2022-0300
28 Jan 2022 — Use after free in Text Input Method Editor in Google Chrome on Android prior to 97.0.4692.99 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en Text Input Method Editor en Google Chrome en Android versiones anteriores a 97.0.4692.99, permitía que un atacante remoto que convenciera a un usuario de participar en interacciones de usuario específicas explotara potencialme... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop_19.html • CWE-416: Use After Free •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-0309 – Debian Security Advisory 5054-1
https://notcve.org/view.php?id=CVE-2022-0309
28 Jan 2022 — Inappropriate implementation in Autofill in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Una implementación inapropiada de Autofill en Google Chrome versiones anteriores a 97.0.4692.99, permitía a un atacante remoto omitir las restricciones de navegación por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information d... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop_19.html • CWE-863: Incorrect Authorization •
CVSS: 8.8EPSS: 1%CPEs: 1EXPL: 0CVE-2022-0296 – Debian Security Advisory 5054-1
https://notcve.org/view.php?id=CVE-2022-0296
28 Jan 2022 — Use after free in Printing in Google Chrome prior to 97.0.4692.99 allowed a remote attacker who convinced the user to engage is specific user interactions to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en Printing en Google Chrome versiones anteriores a 97.0.4692.99, permitía a un atacante remoto que convencía al usuario de participar en interacciones de usuario específicas explotar potencialmente una corrupción de la pila por medio de una página HTML ... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop_19.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-0302 – Debian Security Advisory 5054-1
https://notcve.org/view.php?id=CVE-2022-0302
28 Jan 2022 — Use after free in Omnibox in Google Chrome prior to 97.0.4692.99 allowed an attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en Omnibox en Google Chrome versiones anteriores a 97.0.4692.99, permitía a un atacante que convencía a un usuario de participar en interacciones específicas con el usuario explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada Mu... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop_19.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 0%CPEs: 4EXPL: 0CVE-2022-0103 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2022-0103
28 Jan 2022 — Use after free in SwiftShader in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en SwiftShader en Google Chrome versiones anteriores a 97.0.4692.71, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service ... • https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html • CWE-416: Use After Free •