Published: 28/07/2022 Updated: 07/11/2023

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 0

Use after free in Guest View in Google Chrome before 103.0.5060.134 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.

Vulnerable Product	Search on Vulmon	Subscribe to Product
google chrome

Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure For the stable distribution (bullseye), these problems have been fixed in version 10305060134-1~deb11u1 We recommend that you upgrade your chromium packages For the detailed security status o ...

LTS-96 has been updated in the LTS channel to 9604664218 (Platform Version: 14268990) for most ChromeOS devices Want to know more about Long-term Support? Click here This update includes the following Security fixes:1336266 High  CVE-2022-2477  Use after free in Guest View1341603  High&n ...

A new LTS Candidate, LTC- 10205005170 (Platform Version: 146951150),  has been released  for most ChromeOS devices Release notes for LTC-102 can be found here Want to know more about Long-term Support? Click here This update includes the following Security fixes:1339844  High& ...

CWE-416 https://chromereleases.googleblog.com/2022/07/stable-channel-update-for-desktop_19.html https://crbug.com/1336266 https://security.gentoo.org/glsa/202208-35 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PQKT7EGDD2P3L7S3NXEDDRCPK4NNZNWJ/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YKLJ3B3D5BCVWE3QNP4N7HHF26OHD567/https://nvd.nist.gov https://www.debian.org/security/2022/dsa-5187

CVE-2022-2477

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect