[CIVN-2022-0477] Multiple Vulnerabilities in Google Chrome for Desktop

Severity Rating: HIGH

Software Affected

Google Chrome Stable channel versions prior to 108.0.5359.124 for Mac and Linux

Google Chrome Stable channel versions prior to 108.0.5359.124/125 for Windows

Overview

Multiple Vulnerabilities have been reported in Google Chrome for Desktop which could be exploited by a remote attacker to execute arbitrary code or cause denial of service condition on the targeted system.

Description

These vulnerabilities exist in Google Chrome for Desktop due to Use-after-free in Blink Media, Mojo IPC, Blink Frames, Aura and in Profiles. An attacker could exploit these vulnerabilities by persuading a victim to visit a specially crafted website.

Successful exploitation of these vulnerabilities could allow a remote attacker to execute arbitrary code or cause denial of service condition on the targeted system.

Solution

Apply appropriate updates as mentioned

https://chromereleases.googleblog.com/2022/12/stable-channel-update-for-desktop_13.html

Vendor Information

Google Chrome

https://chromereleases.googleblog.com/2022/12/stable-channel-update-for-desktop_13.html

References

Google Chrome

https://chromereleases.googleblog.com/2022/12/stable-channel-update-for-desktop_13.html

CVE Name

CVE-2022-4436

CVE-2022-4437

CVE-2022-4438

CVE-2022-4439

CVE-2022-4440

About Cert Advisory

We have created this blog to provide latest security advisory from the india cert for the security vulnerability, threats, attacks and patching required to mitigate any kind of cyber attacks.

[CIVN-2022-0477] Multiple Vulnerabilities in Google Chrome for Desktop

About Cert Advisory

Related Posts

Popular Posts

Facebook

Blog Archive