CVE-2022-1641: Use After Free
First published: Tue Jul 26 2022(Updated: )
Use after free in Web UI Diagnostics in Google Chrome on Chrome OS prior to 101.0.4951.64 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via specific user interaction.
Credit: chrome-cve-admin@google.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Google Chrome | <101.0.4951.64 | |
| Google Chrome OS |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2022-1641.
What is the severity level of CVE-2022-1641?
The severity level of CVE-2022-1641 is high, with a severity value of 8.8.
What software is affected by CVE-2022-1641?
Google Chrome on Chrome OS prior to version 101.0.4951.64 is affected by CVE-2022-1641.
How can a remote attacker exploit CVE-2022-1641?
A remote attacker who convinces a user to engage in specific UI interactions can potentially exploit heap corruption via specific user interaction in Web UI Diagnostics in Google Chrome on Chrome OS prior to version 101.0.4951.64.
Where can I find more information about CVE-2022-1641?
You can find more information about CVE-2022-1641 at the following references: [link1], [link2], [link3].
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/remedy
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- agent/weakness
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/google
- canonical/google chrome
- canonical/google chrome os