CVE-2022-4909

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 107.0.5304.62

Description The issue is related to an inappropriate implementation in XML, allowing a remote attacker to potentially perform an ASLR bypass via a crafted HTML page. This is due to insufficient access control in the XML component of the browser. The exploitation of this issue may enable an attacker to bypass the ASLR protection mechanism.

Recommendations For versions prior to 107.0.5304.62, update to version 107.0.5304.62 or later to resolve the issue. As a temporary workaround, consider restricting access to crafted HTML pages that could exploit this issue.