CVE-2022-1636 An attacker in Google Chrome before 101.0.4951.64 could exploit heap corruption after an AF in Performance APIs.
CVE-2018-6042 — A remote attacker could leverage mishandling of resources in a HTML page to execute arbitrary code by leveraging use of the WebRender API. This
CVE-2022-1633 An attacker can exploit heap corruption after user engagement in Sharesheet in Google Chrome on Chrome OS prior to 101.0.4951.64 to gain access to sensitive information.
This issue was fixed in Google Chrome 101.0.5. Earlier versions are vulnerable. Chrome OS devices running any version prior to these are vulnerable.
CVE-2022-1496 An after free bug in Google Chrome prior to 101.0.4951.41 allowed a remote attacker to exploit heap corruption.
CVE-2016-1652 was discovered in Google Chrome prior to version 65.0.1724.95. A maliciously crafted HTML document could cause the Host Security Autentication algorithm
CVE-2022-1483 Heap buffer overflow in WebGPU in Chrome prior to 101.0.4951.41 allowed a remote attacker who compromised the renderer process to exploit heap corruption.
This issue was fixed with the 18th Chromium release. Google advised users to avoid opening unsolicited HTML email attachments. In addition, users were encouraged to
CVE-2022-1635 In earlier version of Chrome, after free could be used to gain heap access. Now this attack is mitigated.
After installing the updated software, users are encouraged to review the security warnings that are presented to them and consider revoking permissions as necessary. After
Episode
00:00:00
00:00:00