VDB

CESS-2022-4135

CESS-2022-4135 PUBLISHED CVSS 9.6 CRITICAL

Heap buffer overflow in GPU in Google Chrome prior to 107.0.5304.121 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High) [Coalition visibility: cisa-kev]

Risk Scores

CVSS 3.1
9.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Timeline

  • Nov 25, 2022 CVE Published
Open in Interactive Console →
$ Console Community · 100/wk Open console ›