Vulnerabilities > Google > Chrome > 77.0.3865.81

DATE CVE VULNERABILITY TITLE RISK
2022-11-01 CVE-2022-3311 Use After Free vulnerability in Google Chrome
Use after free in import in Google Chrome prior to 106.0.5249.62 allowed a remote attacker who had compromised a WebUI process to potentially perform a sandbox escape via a crafted HTML page.
network
low complexity
google CWE-416
6.5
2022-11-01 CVE-2022-3312 Missing Authentication for Critical Function vulnerability in Google Chrome
Insufficient validation of untrusted input in VPN in Google Chrome on ChromeOS prior to 106.0.5249.62 allowed a local attacker to bypass managed device restrictions via physical access to the device.
low complexity
google CWE-306
4.6
2022-11-01 CVE-2022-3313 Unspecified vulnerability in Google Chrome
Incorrect security UI in full screen in Google Chrome prior to 106.0.5249.62 allowed a remote attacker to spoof security UI via a crafted HTML page.
network
low complexity
google
6.5
2022-11-01 CVE-2022-3314 Use After Free vulnerability in Google Chrome
Use after free in logging in Google Chrome prior to 106.0.5249.62 allowed a remote attacker who had compromised a WebUI process to potentially perform a sandbox escape via a crafted HTML page.
network
low complexity
google CWE-416
6.5
2022-11-01 CVE-2022-3315 Type Confusion vulnerability in Google Chrome
Type confusion in Blink in Google Chrome prior to 106.0.5249.62 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google CWE-843
8.8
2022-11-01 CVE-2022-3316 Unspecified vulnerability in Google Chrome
Insufficient validation of untrusted input in Safe Browsing in Google Chrome prior to 106.0.5249.62 allowed a remote attacker to bypass security feature via a crafted HTML page.
network
low complexity
google
4.3
2022-11-01 CVE-2022-3317 Unspecified vulnerability in Google Chrome
Insufficient validation of untrusted input in Intents in Google Chrome on Android prior to 106.0.5249.62 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.
network
low complexity
google
4.3
2022-11-01 CVE-2022-3318 Improper Resource Shutdown or Release vulnerability in Google Chrome
Use after free in ChromeOS Notifications in Google Chrome on ChromeOS prior to 106.0.5249.62 allowed a remote attacker who convinced a user to reboot Chrome OS to potentially exploit heap corruption via UI interaction.
network
low complexity
google CWE-404
4.3
2022-11-01 CVE-2022-3443 Unspecified vulnerability in Google Chrome
Insufficient data validation in File System API in Google Chrome prior to 106.0.5249.62 allowed a remote attacker to bypass File System restrictions via a crafted HTML page.
network
low complexity
google
4.3
2022-11-01 CVE-2022-3444 Improper Input Validation vulnerability in Google Chrome
Insufficient data validation in File System API in Google Chrome prior to 106.0.5249.62 allowed a remote attacker to bypass File System restrictions via a crafted HTML page and malicious file.
network
low complexity
google CWE-20
4.3