Fedoraproject

Fedora

5353 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2022-2619

  • EPSS 0.27%
  • Veröffentlicht 12.08.2022 20:15:09
  • Zuletzt bearbeitet 21.11.2024 07:01:22

Insufficient validation of untrusted input in Settings in Google Chrome prior to 104.0.5112.79 allowed an attacker who convinced a user to install a malicious extension to inject scripts or HTML into a privileged page via a crafted HTML page.

8.8

CVE-2022-2620

  • EPSS 1.29%
  • Veröffentlicht 12.08.2022 20:15:09
  • Zuletzt bearbeitet 21.11.2024 07:01:22

Use after free in WebUI in Google Chrome on Chrome OS prior to 104.0.5112.79 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via specific UI interactions.

8.8

CVE-2022-2621

Exploit
  • EPSS 0.18%
  • Veröffentlicht 12.08.2022 20:15:09
  • Zuletzt bearbeitet 21.11.2024 07:01:22

Use after free in Extensions in Google Chrome prior to 104.0.5112.79 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via specific UI interactions.

6.5

CVE-2022-2622

  • EPSS 0.4%
  • Veröffentlicht 12.08.2022 20:15:09
  • Zuletzt bearbeitet 21.11.2024 07:01:22

Insufficient validation of untrusted input in Safe Browsing in Google Chrome on Windows prior to 104.0.5112.79 allowed a remote attacker to bypass download restrictions via a crafted file.

8.8

CVE-2022-2623

  • EPSS 0.81%
  • Veröffentlicht 12.08.2022 20:15:09
  • Zuletzt bearbeitet 21.11.2024 07:01:22

Use after free in Offline in Google Chrome on Android prior to 104.0.5112.79 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via specific UI interactions.

8.8

CVE-2022-2624

  • EPSS 1.23%
  • Veröffentlicht 12.08.2022 20:15:09
  • Zuletzt bearbeitet 21.11.2024 07:01:22

Heap buffer overflow in PDF in Google Chrome prior to 104.0.5112.79 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via a crafted PDF file.

8.8

CVE-2022-2603

  • EPSS 0.93%
  • Veröffentlicht 12.08.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 07:01:20

Use after free in Omnibox in Google Chrome prior to 104.0.5112.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

8.8

CVE-2022-2604

  • EPSS 0.93%
  • Veröffentlicht 12.08.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 07:01:20

Use after free in Safe Browsing in Google Chrome prior to 104.0.5112.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

6.5

CVE-2022-2605

  • EPSS 0.44%
  • Veröffentlicht 12.08.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 07:01:20

Out of bounds read in Dawn in Google Chrome prior to 104.0.5112.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

8.8

CVE-2022-2606

  • EPSS 0.99%
  • Veröffentlicht 12.08.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 07:01:20

Use after free in Managed devices API in Google Chrome prior to 104.0.5112.79 allowed a remote attacker who convinced a user to enable a specific Enterprise policy to potentially exploit heap corruption via a crafted HTML page.