Google Chrome version 97.0.4692.71-CVE-2022-0337

April 1, 2022

NAME

GoogleChrome

  • Platforms Affected:
    Chrome

  • Risk Level:
    low

  • CVE Type:
    Inappropriate implementation

DESCRIPTION

CVE-2022-0337 is an inappropriate implementation vulnerability impacting Google Chrome versions 96.0.4664.110 and earlier. A proof of concept (PoC) was observed in open source and a link to a PoC was shared in the underground.

CVSS Information:

  • CVSS 2.0 SCORE:
  • CVSS 3.0 SCORE:

  • Exploit Disclosed in the Public:
    true

  • Exploit Weaponised:


  • PoC Link:
    hXXps://github[.]com/Puliczek/CVE-2022-0337-PoC-Google-Chrome-Microsoft-Edge-Opera

MITIGATION

Google addressed the vulnerability in a stable channel update by releasing Chrome version 97.0.4692.71.

  • Reference Link:
    https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html

  • Patch Available:
    available

If you like the site, please consider joining the telegram channel and supporting us on Patreon using the button below.

Digital Patreon Wordmark FieryCoralv2

You may have missed

image

[KILLSEC] – Ransomware Victim: Sumitomo

November 2, 2024
Cobalt Strike

Cobalt Strike Beacon Detected – 47[.]108[.]112[.]243:8443

November 2, 2024
Cobalt Strike

Cobalt Strike Beacon Detected – 39[.]100[.]108[.]3:80

November 2, 2024
Cobalt Strike

Cobalt Strike Beacon Detected – 47[.]93[.]43[.]246:443

November 2, 2024
image

[QILIN] – Ransomware Victim: DieTech North America

November 2, 2024