ID |
CVE-2022-3890
|
Summary |
Heap buffer overflow in Crashpad in Google Chrome on Android prior to 107.0.5304.106 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High) |
References |
|
Vulnerable Configurations |
-
cpe:2.3:a:google:chrome:38.0.2125.101:*:*:*:*:android:*:*
cpe:2.3:a:google:chrome:38.0.2125.101:*:*:*:*:android:*:*
-
cpe:2.3:a:google:chrome:40.0.2214.89:*:*:*:*:android:*:*
cpe:2.3:a:google:chrome:40.0.2214.89:*:*:*:*:android:*:*
-
cpe:2.3:a:google:chrome:40.0.2214.109:*:*:*:*:android:*:*
cpe:2.3:a:google:chrome:40.0.2214.109:*:*:*:*:android:*:*
-
cpe:2.3:a:google:chrome:42.0.2311.107:*:*:*:*:android:*:*
cpe:2.3:a:google:chrome:42.0.2311.107:*:*:*:*:android:*:*
-
cpe:2.3:a:google:chrome:54.0.2840.68:*:*:*:*:android:*:*
cpe:2.3:a:google:chrome:54.0.2840.68:*:*:*:*:android:*:*
-
cpe:2.3:a:google:chrome:83.0.4103.106:*:*:*:*:android:*:*
cpe:2.3:a:google:chrome:83.0.4103.106:*:*:*:*:android:*:*
-
cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*
|
CVSS |
Base: | None |
Impact: | |
Exploitability: | |
|
CWE |
CWE-787 |
CAPEC |
|
Access |
Vector | Complexity | Authentication |
|
|
|
|
Impact |
Confidentiality | Integrity | Availability |
|
|
|
|
Last major update |
08-12-2022 - 21:43 |
Published |
09-11-2022 - 04:15 |
Last modified |
08-12-2022 - 21:43 |