Published: 26/09/2022 Updated: 07/11/2023

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 0

Use after free in FedCM in Google Chrome before 104.0.5112.101 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.

Vulnerable Product	Search on Vulmon	Subscribe to Product
google chrome
fedoraproject fedora 37

Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure For the stable distribution (bullseye), these problems have been fixed in version 10405112101-1~deb11u1 We recommend that you upgrade your chromium packages For the detailed security status o ...

The Stable channel has been updated to 10405112101 for Mac and Linux and 10405112102/101 for Windows which will roll out over the coming days/weeks Extended stable channel has been updated to 10405112101 for Mac and 10405112102 for Windows , which will roll out over the coming days/weeksA full list of changes in this build is avai ...

CWE-416 https://chromereleases.googleblog.com/2022/08/stable-channel-update-for-desktop_16.html https://crbug.com/1349322 http://packetstormsecurity.com/files/169457/Chrome-AccountSelectionBubbleView-OnAccountImageFetched-Heap-Use-After-Free.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T4NMJURTG5RO3TGD7ZMIQ6Z4ZZ3SAVYE/https://nvd.nist.gov https://www.debian.org/security/2022/dsa-5212

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2022-2852

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect