First published: Wed Feb 12 2020(Updated: )
Inappropriate implementation in Site Isolation in Google Chrome prior to 105.0.5195.52 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page.
Credit: Lucas Pinheiro Microsoft Browser Vulnerability Research chrome-cve-admin@google.com
Affected Software | Affected Version | How to fix |
---|---|---|
Google Chrome (Trace Event) | <105.0.5195.52 | 105.0.5195.52 |
Google Chrome | <105.0.5195.52 | |
Red Hat Fedora | =37 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
The severity of CVE-2022-3044 is high, as it allows remote attackers to bypass site isolation in Google Chrome.
To fix CVE-2022-3044, update Google Chrome to version 105.0.5195.52 or later.
CVE-2022-3044 affects users of Google Chrome prior to version 105.0.5195.52 and Fedora 37.
CVE-2022-3044 is a site isolation bypass vulnerability found in Google Chrome.
Yes, CVE-2022-3044 can be exploited remotely by an attacker through a crafted HTML page.