CVE-2022-4925

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 97.0.4692.71

Description The issue is related to insufficient validation of untrusted input in the QUIC protocol implementation in Google Chrome. This can be exploited by a remote attacker to perform header splitting via malicious network traffic, potentially affecting the integrity of protected information.

Recommendations For versions prior to 97.0.4692.71, update to version 97.0.4692.71 or later to resolve the issue. As a temporary workaround, consider restricting the use of the QUIC protocol until a patch is applied.