CVE-2022-4920

Summary

Heap buffer overflow in Blink in Google Chrome prior to 101.0.4951.41 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

Affected Software

VendorProductVersion RangeStatus
GoogleChrome101.0.4951.41 < 101.0.4951.41affected

Weaknesses

  • Heap buffer overflow

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References