CVE-2022-1305 — Vulnetix

CVE-2022-1305 PUBLISHED CVSS 8.800000190734863 HIGH

Inappropriate implementation in full screen in Google Chrome on Android prior to 100.0.4896.88 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.

EPSS 0.79% · 74.3th percentile

Risk Scores

CVSS 3.1

8.800000190734863

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS Score

0.79%

74.3th percentile

Affected Products

Vendor	Product	Versions
Google	Chrome	unspecified
google	chrome	0, 0

Exploit Intelligence

https://crbug.com/1285234 (nist-nvd)
https://chromereleases.googleblog.com/2022/04/stable-channel-update-for-desktop_11.html (circl)
https://crbug.com/1301873 (circl)
GLSA-202208-25 (circl)

Timeline

Apr 12, 2022 CVE Published
Jul 26, 2022 EPSS Score
Sep 11, 2022 EPSS Score
Oct 27, 2022 EPSS Score
Dec 13, 2022 EPSS Score
Dec 30, 2022 EPSS Score
Feb 23, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 16, 2023 EPSS Score
May 2, 2023 EPSS Score
Jun 18, 2023 EPSS Score
Aug 4, 2023 EPSS Score

References

https://msrc.microsoft.com/update-guide/ advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1364 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1308 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1313 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1306 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1309 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1312 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1307 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1314 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1310 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29144 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1305 advisory
https://nvd.nist.gov/vuln/detail/CVE-2022-1305 advisory
https://chromereleases.googleblog.com/2022/04/stable-channel-update-for-desktop_11.html url
https://crbug.com/1285234 url
https://security.gentoo.org/glsa/202208-25 url
https://crbug.com/1301873 url

Open in Interactive Console →