CVE-2022-3315 - Type Confusion in Blink (Chrome < 106..5249.62) – How It Works and Exploit Details
Google Chrome is one of the most-used web browsers worldwide, trusted by billions for everything from browsing to online banking. However, even robust software can
CVE-2022-3309 - Exploiting a Use-After-Free Vulnerability in ChromeOS Assistant to Escape the Sandbox
Sometimes, a small bug can open the door to big risks, especially in software we use every day. CVE-2022-3309 is one such example—a *use-after-free*
CVE-2022-3306 - Deep Dive Into a ChromeOS “Use-After-Free” Heap Corruption Vulnerability
In September 2022, Google patched a serious vulnerability tracked as CVE-2022-3306. This flaw is found in Google Chrome on ChromeOS versions prior to 106..5249.
CVE-2022-3316 In earlier versions of Chrome, unsafe validation of untrusted input could be exploited to bypass security features.
A race condition in Safe Browsing validation in Google Chrome prior to 106.0.5249.62 allowed a remote attacker to bypass security feature via
CVE-2022-3308 In DevTools, a remote attacker could escape the sandbox and perform malicious actions.
The sandbox protection in Chrome is implemented via the concept of content sandboxing, which prevents untrusted content (such as XSS attacks) from executing with system
Episode
00:00:00
00:00:00