CVE-2022-0289

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 97.0.4692.99 Google Chrome version 96.0.4664.174 and earlier (Extended Stable) Microsoft Edge (affected versions not specified)

Description The issue is related to a use-after-free vulnerability in the Safe Browsing service of Google Chrome and Microsoft Edge browsers. This vulnerability can be exploited by a remote attacker using a specially crafted HTML page, potentially allowing them to execute arbitrary code. The vulnerability is associated with accessing already freed memory in the Safe Browsing implementation.

Recommendations For Google Chrome versions prior to 97.0.4692.99, update to version 97.0.4692.99 or later. For Google Chrome version 96.0.4664.174 and earlier (Extended Stable), update to a version later than 96.0.4664.174. For Microsoft Edge, at the moment, there is no information about a newer version that contains a fix for this vulnerability.