CVE-2022-4135
| CVE Published | 2022-11-25 |
|---|---|
| Related CWE(s) | CWE-787: Out-of-bounds Write |
| Related Vendor(s) | microsoft, google |
| Related Product(s) | chrome, edge_chromium, edge |
| Exploitation Reported (CISA KEV) | 2022-11-28 |
| CVSS 3 Base Score | 9.6 (CRITICAL) |
| CVSS 3 Attack Complexity | LOW |
| CVSS 3 Attack Vector | NETWORK |
Heap buffer overflow in GPU in Google Chrome prior to 107.0.5304.121 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
Cyber Threat Graph Context
Explore how this CVE relates to the wider threat graph