CVE-2022-3197 An after free vulnerability in Google Chrome could be exploited to cause heap corruption.
CVE-2018-6050 was assigned this issue. As of writing this advisory, it is still unclear whether this issue can be exploited to achieve remote code execution.
CVE-2022-3201 In past DevTools, an attacker could convince a user to install a malicious extension, which could bypass navigation restrictions.
This issue was addressed by disabling installation of extensions from non-trusted sources such as the Chrome Web Store. We also enabled a warning message when
CVE-2022-22629 A buffer overflow was fixed in Monterey 12.3, Safari 15.4, watchOS 8.5, iTunes 12.12.3, iOS 15.4, and iPadOS 15.4.
This issue is fixed in macOS Mojave 10.14.5, Safari 12.5, watchOS 5.2, iTunes 12.12.2 for Windows, iOS 15.3,
CVE-2022-26700 - Unpacking Apple’s Memory Corruption Flaw and How It Was Exploited
In May 2022, Apple patched a dangerous vulnerability tracked as CVE-2022-26700 that lurked in many of its most popular platforms: tvOS, watchOS, iOS, iPadOS, macOS
CVE-2022-22628 - A Deep Dive into the Use-After-Free Bug in Apple WebKit
In early 2022, Apple quietly patched a critical security vulnerability—CVE-2022-22628—that affects their WebKit engine. If you use Safari, or any Apple device for
Episode
00:00:00
00:00:00