VDB
CVE-2022-0605
CVE-2022-0605
PUBLISHED
Reported by Chrome · Published April 4, 2022
Use after free in Webstore API in Google Chrome prior to 98.0.4758.102 allowed an attacker who convinced a user to install a malicious extension and convinced a user to enage in specific user interaction to potentially exploit heap corruption via a crafted HTML page.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Chrome | unspecified | |
| Chrome | unspecified | |
| alpine | chromium | 0, 0, 0 |
Exploit Intelligence
- updateCVEDescription_test.hpp (github-poc)
- updateCVEDescription_test.hpp (github-poc)
- updateCVEDescription_test.hpp (github-poc)
- updateCVEDescription_test.hpp (github-poc)
- updateCVEDescription_test.hpp (github-poc)
- updateCVEDescription_test.hpp (github-poc)
- updateCVEDescription_test.hpp (github-poc)
- updateCVEDescription_test.hpp (github-poc)
Timeline
- Feb 17, 2022 CVE Published
- Apr 5, 2022 EPSS Score
- May 26, 2022 EPSS Score
- Jul 16, 2022 EPSS Score
- Sep 5, 2022 EPSS Score
- Oct 25, 2022 EPSS Score
- Dec 15, 2022 EPSS Score
- Feb 3, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Mar 26, 2023 EPSS Score
- May 15, 2023 EPSS Score
- Jul 5, 2023 EPSS Score