First published: Tue Jul 19 2022(Updated: )
Use after free in Cast UI and Toolbar in Google Chrome prior to 103.0.5060.134 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via UI interaction.
Credit: chrome-cve-admin@google.com Chaoyuan Peng
Affected Software | Affected Version | How to fix |
---|---|---|
Google Chrome | <103.0.5060.134 | |
Fedoraproject Extra Packages For Enterprise Linux | =8.0 | |
Fedoraproject Fedora | =35 | |
Fedoraproject Fedora | =36 | |
Google Chrome | <103.0.5060.134 | 103.0.5060.134 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
CVE-2022-2163 is a vulnerability in Google Chrome that allows an attacker to potentially exploit heap corruption via UI interaction.
CVE-2022-2163 has a severity rating of 8.8 (high).
Google Chrome versions prior to 103.0.5060.134, Fedora Extra Packages For Enterprise Linux 8.0, Fedora 35, and Fedora 36 are affected by CVE-2022-2163.
An attacker can exploit CVE-2022-2163 by convincing a user to install a malicious extension, which can lead to heap corruption via UI interaction.
You can find more information about CVE-2022-2163 in the following references: [1] [2] [3]