CVE-2022-1232
published 2022-07-25CVE-2022-1232: Type confusion in V8 in Google Chrome prior to 100.0.4896.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
PriorityP358high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
EPSS
16.49%
96.6th percentile
Type confusion in V8 in Google Chrome prior to 100.0.4896.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| chromium | chromium | >= 0 < 100.0.4896.75-1~deb11u1 | 100.0.4896.75-1~deb11u1 |
| chromium | chromium | >= 0 < 100.0.4896.75-1 | 100.0.4896.75-1 |
| chromium | chromium | >= 0 < 100.0.4896.75-1 | 100.0.4896.75-1 |
| chromium | chromium | >= 0 < 100.0.4896.75-1 | 100.0.4896.75-1 |
| debian | chromium | < chromium 100.0.4896.75-1 (bookworm) | chromium 100.0.4896.75-1 (bookworm) |
| chrome | < 100.0.4896.75 | 100.0.4896.75 | |
| chrome | >= unspecified < 100.0.4896.75 | 100.0.4896.75 | |
| chrome_chrome | — | — | |
| msrc | microsoft_edge | — | — |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv8.8HIGH
vendor_debian8.8HIGH
vendor_msrc8.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-476r-vp22-v7c4: Type confusion in V8 in Google Chrome prior to 100
ghsa_unreviewed·2022-07-26
CVE-2022-1232 [HIGH] CWE-843 GHSA-476r-vp22-v7c4: Type confusion in V8 in Google Chrome prior to 100
Type confusion in V8 in Google Chrome prior to 100.0.4896.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
OSV
CVE-2022-1232: Type confusion in V8 in Google Chrome prior to 100
osv·2022-07-25·CVSS 8.8
CVE-2022-1232 [HIGH] CVE-2022-1232: Type confusion in V8 in Google Chrome prior to 100
Type confusion in V8 in Google Chrome prior to 100.0.4896.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Project0
2022 0-day In-the-Wild Exploitation…so far - Project Zero
project_zero·2022-06-01·CVSS 8.8
CVE-2016-5128 [HIGH] 2022 0-day In-the-Wild Exploitation…so far - Project Zero
Posted by Maddie Stone, Google Project Zero
This blog post is an overview of a talk, “ 0-day In-the-Wild Exploitation in 2022…so far”, that I gave at the FIRST conference in June 2022. The slides are available here.
For the last three years, we’ve published annual year-in-review reports of 0-days found exploited in the wild. The most recent of these reports is the 2021 Year in Review report, which we published just a few months ago in April. While we plan to stick with that annual cadence, we’re publishing a little bonus report today looking at the in-the-wild 0-days detected and disclosed in the first half of 2022.
As of June 15, 2022, there have been 18 0-days detected and disclosed as exploited in-the-wild in 2022. When we analyzed those 0-days, we found that at least nin
Project0
Project Zero RCA: CVE-2022-1096: Chrome Type Confusion in Property Access Interceptor
project_zero·CVSS 8.8
CVE-2022-1096 [HIGH] Project Zero RCA: CVE-2022-1096: Chrome Type Confusion in Property Access Interceptor
# CVE-2022-1096: Chrome Type Confusion in Property Access Interceptor
## The Basics
**Disclosure or Patch Date:** 25 March 2022
**Product:** Google Chromium
**Advisory:** https://chromereleases.googleblog.com/2022/03/stable-channel-update-for-desktop_25.html
**Affected Versions:** pre 99.0.4844.84
**First Patched Version:** 99.0.4844.84
**Issue/Bug Report:** https://bugs.chromium.org/p/chromium/issues/detail?id=1309225
**Patch CL:** https://chromium.googlesource.com/v8/v8/+/0981e91a4f8692af337e2588562ad1504f4bffdc
**Bug-Introducing CL:** N/A
**Reporter(s):** Anonymous
## The Code
**Proof-of-concept:**
```
style = document.createElement('p').style;
style.prop = { toString: () => {
style.prop = 1;
}};
```
**Exploit sample:** N/A
**Access to the exploit sample?** No
## The Vu
Chrome
Long Term Support Channel Update: CVE-2022-1096
vendor_chrome·2022-04-15·CVSS 8.8
CVE-2022-1096 [HIGH] Long Term Support Channel Update: CVE-2022-1096
Long Term Support Channel Update
CVE-2022-1096: Type Confusion in V8. 1311641 High CVE-2022-1232: Type Confusion in V8
Severity: high
Microsoft
Chromium: CVE-2022-1232 Type Confusion in V8
vendor_msrc·2022-04-12·CVSS 8.8
CVE-2022-1232 [HIGH] Chromium: CVE-2022-1232 Type Confusion in V8
Chromium: CVE-2022-1232 Type Confusion in V8
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
100.0.1185.36
4/7/2022
100.0.4896.60
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
In your Mic
Chrome
Stable Channel Update for Desktop: CVE-2022-1232
vendor_chrome·2022-04-04·CVSS 8.8
CVE-2022-1232 [HIGH] Stable Channel Update for Desktop: CVE-2022-1232
Stable Channel Update for Desktop
CVE-2022-1232: Type Confusion in V8. Reported by Sergei Glazunov of Google Project Zero on 2022-03-30 [ $16000][ 1306507 ] High CVE-2022-3863: Use after free in History
Reported by Anonymous on 2022-03-15 We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel
Severity: high
Debian
CVE-2022-1232: chromium - Type confusion in V8 in Google Chrome prior to 100.0.4896.75 allowed a remote at...
vendor_debian·2022·CVSS 8.8
CVE-2022-1232 [HIGH] CVE-2022-1232: chromium - Type confusion in V8 in Google Chrome prior to 100.0.4896.75 allowed a remote at...
Type confusion in V8 in Google Chrome prior to 100.0.4896.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Scope: local
bookworm: resolved (fixed in 100.0.4896.75-1)
bullseye: resolved (fixed in 100.0.4896.75-1~deb11u1)
forky: resolved (fixed in 100.0.4896.75-1)
sid: resolved (fixed in 100.0.4896.75-1)
trixie: resolved (fixed in 100.0.4896.75-1)
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://chromereleases.googleblog.com/2022/04/stable-channel-update-for-desktop.htmlhttps://crbug.com/1311641https://security.gentoo.org/glsa/202208-25https://chromereleases.googleblog.com/2022/04/stable-channel-update-for-desktop.htmlhttps://crbug.com/1311641https://security.gentoo.org/glsa/202208-25
2022-07-25
Published