Published: 11/02/2022 Updated: 08/08/2023

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 7.4 | Impact Score: 4 | Exploitability Score: 2.8

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Insufficient data validation in Mojo in Google Chrome before 96.0.4664.110 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.

Vulnerable Product	Search on Vulmon	Subscribe to Product
google chrome

Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure For the oldstable distribution (buster), security support for Chromium has been discontinued due to toolchain issues which no longer allow to build current Chromium releases on buster You can eit ...

A insufficient data validation security issue has been found in the Mojo component of the Chromium browser engine before version 9604664110 ...

The Stable channel has been updated to 9604664110 for Windows, Mac and Linux which will roll out over the coming days/weeks Extended stable channel has also been updated to 9604664110 for Windows and Mac which will roll out over the coming days/weeksA full list of changes in this build is available in the log Interested in switching release ...

CWE-787 CWE-367 https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop_13.html https://crbug.com/1263457 https://nvd.nist.gov https://www.debian.org/security/2022/dsa-5046

CVE-2021-4098

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect