» 2022 » 7월

CVE-2022-1864

Posted on 2022년 7월 28일2022년 7월 28일 by admin

CVE-2022-1864

Use after free in WebApp Installs in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension and specific user interaction.

Source: CVE-2022-1864

CVE-2022-1876

Posted on 2022년 7월 28일2022년 7월 28일 by admin

CVE-2022-1876

Heap buffer overflow in DevTools in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.

Source: CVE-2022-1876

CVE-2022-1865

Posted on 2022년 7월 28일2022년 7월 28일 by admin

CVE-2022-1865

Use after free in Bookmarks in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension and specific user interaction.

Source: CVE-2022-1865

CVE-2022-1874

Posted on 2022년 7월 28일2022년 7월 28일 by admin

CVE-2022-1874

Insufficient policy enforcement in Safe Browsing in Google Chrome on Mac prior to 102.0.5005.61 allowed a remote attacker to bypass downloads protection policy via a crafted HTML page.

Source: CVE-2022-1874

CVE-2022-1875

Posted on 2022년 7월 28일2022년 7월 28일 by admin

CVE-2022-1875

Inappropriate implementation in PDF in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to leak cross-origin data via a crafted HTML page.

Source: CVE-2022-1875

CVE-2022-1872

Posted on 2022년 7월 28일2022년 7월 28일 by admin

CVE-2022-1872

Insufficient policy enforcement in Extensions API in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to bypass downloads policy via a crafted HTML page.

Source: CVE-2022-1872

CVE-2022-1873

Posted on 2022년 7월 28일2022년 7월 28일 by admin

CVE-2022-1873

Insufficient policy enforcement in COOP in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to leak cross-origin data via a crafted HTML page.

Source: CVE-2022-1873

CVE-2022-1870

Posted on 2022년 7월 28일2022년 7월 28일 by admin

CVE-2022-1870

Use after free in App Service in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension.

Source: CVE-2022-1870

CVE-2022-1871

Posted on 2022년 7월 28일2022년 7월 28일 by admin

CVE-2022-1871

Insufficient policy enforcement in File System API in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to bypass file system policy via a crafted HTML page.

Source: CVE-2022-1871

CVE-2022-1869

Posted on 2022년 7월 28일2022년 7월 28일 by admin

CVE-2022-1869

Type Confusion in V8 in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Source: CVE-2022-1869