CVE-2022-3197 An after free vulnerability in Google Chrome could be exploited to cause heap corruption.
CVE-2018-6050 was assigned this issue. As of writing this advisory, it is still unclear whether this issue can be exploited to achieve remote code execution. It is recommended to update to the latest version of Google Chrome. Google Chrome prior to 105.0.
5195.125, when using the Address bar to navigate to a remote site, allowed a remote attacker to potentially inject arbitrary JavaScript into another tab via a crafted URL.
Google Chrome prior to 105.0.5195.125, when printing a PDF file, allowed a remote attacker to potentially execute arbitrary code outside of the sandbox via a crafted PDF file.
Google Chrome prior to 105.0.5195.125, when printing to a Windows printer, allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.
Google Chrome prior to 105.0.5195.125, when opening a PDF file, allowed a remote attacker to potentially execute arbitrary code outside of the sandbox via a crafted PDF file.
Google Chrome prior to 105.0.5195.125, when loading a malicious PDF file, allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.
What is Google Chrome?
Google Chrome is a web browser that is developed by Google. It can be downloaded from the website and runs on Windows, Mac, Linux, and Chrome OS. It uses JavaScript to implement some of its features such as web applications, virtual machines, and extensions. Other features include synchronization with Microsoft Exchange calendars, support for a wide variety of media formats such as OGG and MOV in HTML5 video playback, and built-in PDF support.
How do I find out which version of Google Chrome is on my computer?
To find out which version of Google Chrome is installed on your computer, open the following URL: https://www.google.com/chrome?version=
Timeline
Published on: 09/26/2022 16:15:00 UTC
Last modified on: 09/29/2022 17:15:00 UTC