cbcvebase.
CVE-2022-1096
published 2022-07-23

CVE-2022-1096: Type confusion in V8 in Google Chrome prior to 99.0.4844.84 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

PriorityP186high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
KEVITW
CISA Known Exploited Vulnerabilitydue 2022-04-18
Exploited in the wild
EPSS
24.24%
97.6th percentile
Type confusion in V8 in Google Chrome prior to 99.0.4844.84 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Affected

11 ranges
VendorProductVersion rangeFixed in
chromiumchromium>= 0 < 99.0.4844.84-1~deb11u199.0.4844.84-1~deb11u1
chromiumchromium>= 0 < 99.0.4844.84-199.0.4844.84-1
chromiumchromium>= 0 < 99.0.4844.84-199.0.4844.84-1
chromiumchromium>= 0 < 99.0.4844.84-199.0.4844.84-1
debianchromium< chromium 99.0.4844.84-1 (bookworm)chromium 99.0.4844.84-1 (bookworm)
googlechrome< 99.0.4844.8499.0.4844.84
googlechrome>= unspecified < 99.0.4844.8499.0.4844.84
googlechrome_chrome
msrcmicrosoft_edge
msrcmicrosoft_visual_studio_2022_version_17.0
msrcmicrosoft_visual_studio_2022_version_17.1

Detection & IOCsextracted from sources · hover to see the quote

versionChrome prior to 99.0.4844.84
  • CVE-2022-1096 is a type confusion vulnerability in Chrome's V8 JavaScript engine, confirmed exploited in the wild as a zero-day. Detection should focus on identifying unpatched Chrome/Chromium-based browsers (versions prior to 99.0.4844.84) in the environment.
  • The vulnerability could allow a threat actor to perform out-of-bounds memory access via the V8 engine; monitor for anomalous renderer process crashes or memory corruption signals in Chrome/Chromium-based applications.
  • Rockwell Automation ICS products embedding Chromium (FactoryTalk Linx Enterprise 6.20/6.21/6.30, eHIM for PowerFlex 6000T v1.001, Connected Components Workbench v11/12/13/20, FactoryTalk View Site Edition v13) are affected; audit OT environments for these specific product versions.
  • For Rockwell FactoryTalk View Site Edition, the vulnerable WebView2 runtime is located at a known path; check for outdated Microsoft WebView2 FixedVersionRuntime installations at this directory.
  • For Chromium-based Microsoft Edge used with eHIM for PowerFlex 6000T, flag Edge versions below 99.0.1150 as vulnerable.
  • ·No public proof-of-concept exploit was available at time of reporting, though in-the-wild exploitation was confirmed. Exploitation details and full technical write-up had not been published by NVD at time of blog publication.
  • ·In the context of Rockwell Automation ICS products, the vulnerability is NOT remotely exploitable and results only in a denial-of-service (temporary unavailability), not arbitrary code execution — the CVSS score was adjusted accordingly to 4.0.

CVSS provenance

nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv8.8HIGH
vulncheck8.8HIGH
cisa8.8HIGH
vendor_debian8.8HIGH
vendor_msrc8.8HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.