Kaspersky ID:
KLA12493
Дата обнаружения:
29/03/2022
Обновлено:
22/01/2024

Описание

Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code.

Below is a complete list of vulnerabilities:

  1. Heap buffer overflow vulnerability in WebUI can be exploited to cause denial of service.
  2. Use after free in WebRTC vulnerability can be exploited to cause denial of service or execute arbitrary code.
  3. Use after free vulnerability in File Manager can be exploited to cause denial of service or execute arbitrary code.
  4. Implementation vulnerability in Virtual Keyboard can be exploited to cause denial of service.
  5. Type confusion vulnerability in V8 can be exploited to cause denial of service.
  6. Implementation vulnerability in Web Cursor can be exploited to cause denial of service.
  7. Use after free vulnerability in Tab Strip can be exploited to cause denial of service or execute arbitrary code.
  8. Use after free vulnerability in QR Code Generator can be exploited to cause denial of service or execute arbitrary code.
  9. Use after free vulnerability in Shopping Cart can be exploited to cause denial of service or execute arbitrary code.
  10. Implementation vulnerability in Full Screen Mode can be exploited to cause denial of service.
  11. Implementation vulnerability in Background Fetch API can be exploited to cause denial of service.
  12. Implementation in Extensions can be exploited to cause denial of service.
  13. Insufficient validation of untrusted input in WebOTP can be exploited to cause denial of service.
  14. Implementation vulnerability in Web Share API can be exploited to cause denial of service.
  15. Use after free vulnerability in Portals can be exploited to cause denial of service or execute arbitrary code.
  16. Implementation vulnerability in Resource Timing can be exploited to cause denial of service.
  17. Use after free vulnerability in Extensions can be exploited to cause denial of service or execute arbitrary code.
  18. Use after free vulnerability in Cast UI can be exploited to cause denial of service or execute arbitrary code.
  19. Use after free vulnerability in WebUI can be exploited to cause denial of service or execute arbitrary code.

Первичный источник обнаружения

Связанные продукты

Список CVE

  • CVE-2022-1143
    warning
  • CVE-2022-1133
    warning
  • CVE-2022-1141
    warning
  • CVE-2022-1132
    warning
  • CVE-2022-1134
    warning
  • CVE-2022-1138
    warning
  • CVE-2022-1136
    warning
  • CVE-2022-1127
    warning
  • CVE-2022-1135
    warning
  • CVE-2022-1129
    warning
  • CVE-2022-1139
    warning
  • CVE-2022-1137
    warning
  • CVE-2022-1130
    warning
  • CVE-2022-1128
    warning
  • CVE-2022-1142
    warning
  • CVE-2022-1125
    warning
  • CVE-2022-1146
    warning
  • CVE-2022-1145
    warning
  • CVE-2022-1131
    warning
  • CVE-2022-1144
    warning

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com

Нашли неточность в описании этой уязвимости? Дайте нам знать!
Kaspersky IT Security Calculator:
Оцените ваш профиль кибербезопасности
Узнать больше
Встречай новый Kaspersky!
Каждая минута твоей онлайн-жизни заслуживает топовой защиты.
Узнать больше
Confirm changes?
Your message has been sent successfully.