Syn4Pse

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 148.0.7778.168 **Description** A heap buffer overflow in WebML allows a remote attacker to potentially exploit heap corruption through a crafted HTML page. A heap buffer overflow occurs when a program writes more data to a buffer allocated on the heap than it can hold, potentially leading to crashes or arbitrary code execution. **Recommendations** Update to version 148.0.7778.168 or later.

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 147.0.7727.55 Description A heap buffer overflow exists in the WebAudio component of Google Chrome. Successful exploitation of this issue by a remote attacker could lead to the disclosure of potentially sensitive information from process memory through a specially crafted HTML page. Recommendations Update Google Chrome to version 147.0.7727.55 or later.

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 147.0.7727.55 Description A heap buffer overflow exists in the WebML component of Google Chrome. Successful exploitation of this issue by a remote attacker could lead to the disclosure of potentially sensitive information from process memory through a specially crafted HTML page. Recommendations Update Google Chrome to version 147.0.7727.55 or later.

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 146.0.7680.178 Description A use-after-free issue in Dawn within Google Chrome, prior to version 146.0.7680.178, could allow a remote attacker who has compromised the renderer process to execute arbitrary code by using a specially crafted HTML page. The Chromium security severity is rated as High. Recommendations Update Google Chrome to version 146.0.7680.178 or later.

**Name of the Vulnerable Software and Affected Versions** Google Chrome on Mac versions prior to 148.0.7778.96 **Description** A use after free issue in ANGLE allows a remote attacker to execute arbitrary code inside a sandbox by using a crafted HTML page. Use after free is a memory corruption flaw that occurs when an application continues to use a pointer after it has been freed. **Recommendations** Update to version 148.0.7778.96 or later.

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 146.0.7680.178 Description A use-after-free condition in the PDF handling component of Google Chrome allowed a remote attacker to potentially execute arbitrary code within a sandbox environment by providing a specially crafted PDF file. The Chromium security severity is rated as High. Recommendations Update Google Chrome to version 146.0.7680.178 or later.

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 147.0.7727.55 Description A type confusion issue in the CSS processing component of Google Chrome, prior to version 147.0.7727.55, could be exploited by an attacker who convinces a user to install a malicious extension. Successful exploitation could lead to heap corruption. Recommendations Update Google Chrome to version 147.0.7727.55 or later.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 146.0.7680.165 **Description** An out-of-bounds read issue exists in Google Chrome. This flaw allows a remote attacker to potentially perform out-of-bounds memory access through a specially crafted HTML page. The security severity is rated as High. **Recommendations** Update Google Chrome to version 146.0.7680.165 or later.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 145.0.7632.159 **Description** An issue exists in Google Chrome related to an inappropriate implementation in CSS. This could allow a remote attacker to perform an out of bounds memory read through a specially crafted HTML page. **Recommendations** Update Google Chrome to version 145.0.7632.159 or later.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 146.0.7680.71 **Description** A use-after-free issue exists in WebMCP within Google Chrome. This allows a remote attacker to potentially exploit heap corruption through a crafted HTML page. The Chromium security severity is rated as High. **Recommendations** Update Google Chrome to version 146.0.7680.71 or later.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 146.0.7680.71 **Description** A use-after-free issue exists in the Agents component of Google Chrome. This flaw could allow a remote attacker to potentially exploit heap corruption through a specially crafted HTML page. **Recommendations** Update Google Chrome to version 146.0.7680.71 or later.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 146.0.7680.153 **Description** A heap buffer overflow exists in the CSS processing component of Google Chrome. This issue could allow a remote attacker to potentially exploit heap corruption through a specially crafted HTML page. **Recommendations** Update Google Chrome to version 146.0.7680.153 or later.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 146.0.7680.153 **Description** A use after free issue in Blink, a component of Google Chrome, could allow a remote attacker to potentially exploit heap corruption through a specially crafted HTML page. The Chromium security severity is rated as High. **Recommendations** Update Google Chrome to version 146.0.7680.153 or later.