CVE-2022-2855 — Vulnetix

Try Vulnetix Request Demo

CVE-2022-2855 PUBLISHED CVSS 8.8 HIGH

Reported by Chrome · Published September 26, 2022

Use after free in ANGLE in Google Chrome prior to 104.0.5112.101 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Risk Scores

CVSS v3.1

8.8

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Products

Vendor	Product	Versions
Google	Chrome	unspecified
Google	Chrome	unspecified

Timeline

Aug 25, 2022 CVE Published
Sep 27, 2022 EPSS Score
Nov 10, 2022 EPSS Score
Dec 24, 2022 EPSS Score
Dec 29, 2022 EPSS Score
Feb 6, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 22, 2023 EPSS Score
May 5, 2023 EPSS Score
Jun 18, 2023 EPSS Score
Aug 1, 2023 EPSS Score
Sep 13, 2023 EPSS Score

References

x_refsource_MISC
x_refsource_MISC
FEDORA-2022-3f28aa88cf vendor-advisoryx_refsource_FEDORA
https://issues.chromium.org/issues/40060309 exploit

Open in Interactive Console →