CVE-2022-3723 — Vulnetix

CVE-2022-3723 PUBLISHED CVSS 8.8 HIGH

Reported by Chrome · Published November 1, 2022

Type confusion in V8 in Google Chrome prior to 107.0.5304.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Risk Scores

CVSS 3.1

8.8

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Products

Vendor	Product	Versions
Google	Chrome	unspecified
Google	Chrome	unspecified

Exploit Intelligence

Type confusion in V8 (Google Chrome) (gpz)
Type confusion in V8 (Google Chrome) (gpz)
Type confusion in V8 (Google Chrome) (gpz)
Type confusion in V8 (Google Chrome) (gpz)
Type confusion in V8 (Google Chrome) (gpz)
(vulncheck-xdb)
(vulncheck-xdb)
(vulncheck-xdb)
(vulncheck-xdb)
(vulncheck-xdb)

…and 33 more exploits

Timeline

Jan 20, 1970 VulnCheck XDB Entry
Jan 20, 1970 VulnCheck XDB Entry
Jan 20, 1970 VulnCheck XDB Entry
Jan 20, 1970 VulnCheck XDB Entry
Jan 20, 1970 VulnCheck XDB Entry
Jan 21, 1970 VulnCheck XDB Entry
Jun 8, 2021 VulnCheck KEV Exploitation
Aug 15, 2022 VulnCheck KEV Exploitation
Oct 27, 2022 PoC Published
Oct 28, 2022 CISA KEV Added
Oct 31, 2022 CVE Published
Nov 3, 2022 EPSS Score

References

GLSA-202305-10 vendor-advisory
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2022-3723 url

Open in Interactive Console →