HomePentest-Tools.com Logo

Google Chrome Security Update(stable-channel-update-for-desktop_27-2022-09) - Windows CVE-2022-3304CVE-2022-3201CVE-2022-3305CVE-2022-3306CVE-2022-3307CVE-2022-3308CVE-2022-3309CVE-2022-3310CVE-2022-3311CVE-2022-3312CVE-2022-3313CVE-2022-3314CVE-2022-3315CVE-2022-3316CVE-2022-3317CVE-2022-3318

Severity
CVSSv3 Score
4.3
Vulnerability description

Google Chrome is prone to multiple vulnerabilities.

Risk description

Multiple flaws exist due to, - Use after free in CSS. - Insufficient validation of untrusted input in Developer Tools. - Use after free in Survey. - Use after free in Media. - Insufficient policy enforcement in Developer Tools. - Use after free in Assistant. - Insufficient policy enforcement in Custom Tabs. - Use after free in Import. - Insufficient validation of untrusted input in VPN. - Incorrect security UI in Full Screen. - Use after free in Logging. - Type confusion in Blink. - Insufficient validation of untrusted input in Safe Browsing. - Insufficient validation of untrusted input in Intents. - Use after free in ChromeOS Notifications. Successful exploitation will allow attackers to run arbitrary code, bypass security restrictions, conduct spoofing and cause a denial of service on affected system.

Recommendation

Upgrade to Google Chrome version 106.0.5249.61 or later. Please see the references for more information.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Sep 26, 2022
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available