CVE-2022-3887

Опубликовано: 09 нояб. 2022

Источник: debian

EPSS Низкий

Описание

Use after free in Web Workers in Google Chrome prior to 107.0.5304.106 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
chromium	fixed	107.0.5304.110-1		package
chromium	end-of-life		buster	package

EPSS

Процентиль: 53%

0.00304

Низкий

Связанные уязвимости

CVE-2022-3887

CVSS3: 8.8

ubuntu

около 3 лет назад

Use after free in Web Workers in Google Chrome prior to 107.0.5304.106 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

CVE-2022-3887

CVSS3: 8.8

nvd

около 3 лет назад

Use after free in Web Workers in Google Chrome prior to 107.0.5304.106 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

CVE-2022-3887

msrc

около 3 лет назад

Chromium: CVE-2022-3887 Use after free in Web Workers

GHSA-32v2-p3xf-66m9

CVSS3: 8.8

github

около 3 лет назад

Use after free in Web Workers in Google Chrome prior to 107.0.5304.106 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chrome security severity: High)

BDU:2022-06760

CVSS3: 8.8

fstec

около 3 лет назад

Уязвимость механизма Web Workers браузера Google Chrome, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 53%

0.00304

Низкий