| ID |
CVE-2022-3890
|
| Summary |
Heap buffer overflow in Crashpad in Google Chrome on Android prior to 107.0.5304.106 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High) |
| References |
|
| Vulnerable Configurations |
-
cpe:2.3:a:google:chrome:38.0.2125.101:*:*:*:*:android:*:*
cpe:2.3:a:google:chrome:38.0.2125.101:*:*:*:*:android:*:*
-
cpe:2.3:a:google:chrome:40.0.2214.89:*:*:*:*:android:*:*
cpe:2.3:a:google:chrome:40.0.2214.89:*:*:*:*:android:*:*
-
cpe:2.3:a:google:chrome:40.0.2214.109:*:*:*:*:android:*:*
cpe:2.3:a:google:chrome:40.0.2214.109:*:*:*:*:android:*:*
-
cpe:2.3:a:google:chrome:42.0.2311.107:*:*:*:*:android:*:*
cpe:2.3:a:google:chrome:42.0.2311.107:*:*:*:*:android:*:*
-
cpe:2.3:a:google:chrome:54.0.2840.68:*:*:*:*:android:*:*
cpe:2.3:a:google:chrome:54.0.2840.68:*:*:*:*:android:*:*
-
cpe:2.3:a:google:chrome:83.0.4103.106:*:*:*:*:android:*:*
cpe:2.3:a:google:chrome:83.0.4103.106:*:*:*:*:android:*:*
-
cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*
|
| CVSS |
| Base: | None |
| Impact: | |
| Exploitability: | |
|
| CWE |
CWE-787 |
| CAPEC |
|
| Access |
| Vector | Complexity | Authentication |
|
|
|
|
| Impact |
| Confidentiality | Integrity | Availability |
|
|
|
|
| Last major update |
08-12-2022 - 21:43 |
| Published |
09-11-2022 - 04:15 |
| Last modified |
08-12-2022 - 21:43 |
