CVE-2022-22947 In earlier versions of the gateway, applications are vulnerable to code injection if the Gateway Actuator endpoint is enabled, exposed and unsecured.
The Gateway Actuator endpoint was previously enabled by default in versions prior to 3.1.1+ and 3.0.7+ by default. The endpoint could
CVE-2022-0310 Heap buffer overflow in Task Manager in Chrome prior to 97.0.4692.99 allowed a remote attacker to exploit heap corruption.
On the Task Manager page, the “High Memory” column sometimes did not display properly. This issue was addressed by updating Task Manager to version 97.
CVE-2022-0297 An attacker in Google Chrome before version 97.0.4692.99 could exploit heap corruption after an AAF.
CVE-2018-5712 was discovered in Google Chrome prior to 97.0.4683.0. A flaw in the V8 JavaScript engine allowed a remote attacker to potentially
CVE-2022-0291 Inappropriate implementation in Chrome prior to v97 allowed a remote attacker to bypass site isolation.
This issue was fixed in the following versions:
Google Chrome 97.0.4692.0
Google Chrome 96.0.4079.5
Google Chrome 96.0.4068.
CVE-2022-0290 An attacker can perform a sandbox escape in Google Chrome before 97.0.4692.99 by using an after free bug.
Google did not disclose the vendor responsible for the patch, but released the patch to the public after 4 months of internal review. A cross-site
Episode
00:00:00
00:00:00