PT-2022-4576 · Google+1 · Google Chrome+1

Published

2022-08-30

Updated

2024-06-15

CVE-2022-3043

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 105.0.5195.52

Description The issue is related to a heap buffer overflow in the Screen Capture function of Google Chrome on Chrome OS. This could allow a remote attacker, who convinces a user to engage in specific UI interactions, to potentially exploit heap corruption via a crafted HTML page. The attacker could execute arbitrary code.

Recommendations For versions prior to 105.0.5195.52, update to version 105.0.5195.52 or later to resolve the issue. As a temporary workaround, consider restricting the use of the Screen Capture function until a patch is applied.

Fix

Memory Corruption

Heap Based Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-122

Related Identifiers

ALT-PU-2022-2564

ALT-PU-2022-2611

ALT-PU-2022-2835

ALT-PU-2023-1462

BDU:2022-05453

CVE-2022-3043

DSA-5223-1

MGASA-2022-0318

OPENSUSE-SU-2022:10119-1

OPENSUSE-SU-2022:10120-1

OPENSUSE-SU-2024:12319-1

OPENSUSE-SU-2024:12948-1

Affected Products

Alt Linux

Google Chrome

PT-2022-4576 · Google+1 · Google Chrome+1

CVE-2022-3043

Weakness Enumeration

Related Identifiers

Affected Products

References · 2340