CVE-2022-4178
published 2022-11-30CVE-2022-4178: Use after free in Mojo in Google Chrome prior to 108.0.5359.71 allowed a remote attacker who had compromised the renderer process to potentially exploit heap…
PriorityP261high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
EPSS
23.92%
97.6th percentile
Use after free in Mojo in Google Chrome prior to 108.0.5359.71 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| chromium | chromium | >= 0 < 108.0.5359.71-2~deb11u1 | 108.0.5359.71-2~deb11u1 |
| chromium | chromium | >= 0 < 108.0.5359.71-1 | 108.0.5359.71-1 |
| chromium | chromium | >= 0 < 108.0.5359.71-1 | 108.0.5359.71-1 |
| chromium | chromium | >= 0 < 108.0.5359.71-1 | 108.0.5359.71-1 |
| debian | chromium | < chromium 108.0.5359.71-1 (bookworm) | chromium 108.0.5359.71-1 (bookworm) |
| chrome | < 108.0.5359.71 | 108.0.5359.71 | |
| chrome | >= unspecified < 108.0.5359.71 | 108.0.5359.71 | |
| chrome_chrome | — | — | |
| msrc | microsoft_edge | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Vulnerability requires attacker to have already compromised the renderer process; exploit chain likely involves a prior renderer RCE bug before this UAF in Mojo is triggered ↗
- →Trigger vector is a crafted HTML page delivered remotely; monitor for suspicious HTML/JS content targeting Mojo IPC interfaces in Chrome/Edge ↗
- →Affected component is Mojo IPC in Google Chrome versions prior to 108.0.5359.71; flag any Chrome/Edge processes running versions below this threshold ↗
- ·Exploitation requires a pre-compromised renderer process, meaning this UAF is a sandbox escape primitive rather than an initial access vector; detection should focus on post-renderer-compromise lateral movement within the browser process ↗
- ·The Chromium security severity is rated High but no public exploit code or in-the-wild exploitation was referenced in any of the provided sources ↗
- ·Debian scope is listed as 'local', which may affect how enterprise detection rules are tuned for network-based vs. local exploitation scenarios ↗
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv8.8HIGH
vendor_debian8.8HIGH
vendor_msrc8.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Chrome
Long Term Support Channel Update for ChromeOS: CVE-2022-4178
vendor_chrome·2022-12-14·CVSS 8.8
CVE-2022-4178 [HIGH] Long Term Support Channel Update for ChromeOS: CVE-2022-4178
Long Term Support Channel Update for ChromeOS
CVE-2022-4178
Microsoft
Chromium: CVE-2022-4178 Use after free in Mojo
vendor_msrc·2022-12-13·CVSS 8.8
CVE-2022-4178 [HIGH] Chromium: CVE-2022-4178 Use after free in Mojo
Chromium: CVE-2022-4178 Use after free in Mojo
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
In your Microsoft Edge browser, click on the 3 dots (...) on the very right-hand side of the window
Click on Help and Feedback
Click on About Microsoft Edge
FAQ: What i
Chrome
Stable Channel Update for Desktop: CVE-2022-4177
vendor_chrome·2022-11-29·CVSS 8.8
CVE-2022-4177 [HIGH] Stable Channel Update for Desktop: CVE-2022-4177
Stable Channel Update for Desktop
CVE-2022-4177: Use after free in Extensions. Reported by Chaoyuan Peng (@ret2happy) on 2022-10-28 [$NA][ 1376099 ] High CVE-2022-4178: Use after free in Mojo
Reported by Sergei Glazunov of Google Project Zero on 2022-10-18 [$NA][ 1377783 ] High CVE-2022-4179: Use after free in Audio
Severity: high
Debian
CVE-2022-4178: chromium - Use after free in Mojo in Google Chrome prior to 108.0.5359.71 allowed a remote ...
vendor_debian·2022·CVSS 8.8
CVE-2022-4178 [HIGH] CVE-2022-4178: chromium - Use after free in Mojo in Google Chrome prior to 108.0.5359.71 allowed a remote ...
Use after free in Mojo in Google Chrome prior to 108.0.5359.71 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Scope: local
bookworm: resolved (fixed in 108.0.5359.71-1)
bullseye: resolved (fixed in 108.0.5359.71-2~deb11u1)
forky: resolved (fixed in 108.0.5359.71-1)
sid: resolved (fixed in 108.0.5359.71-1)
trixie: resolved (fixed in 108.0.5359.71-1)
GHSA
GHSA-hr4v-q74p-mj4p: Use after free in Mojo in Google Chrome prior to 108
ghsa_unreviewed·2022-11-30
CVE-2022-4178 [HIGH] CWE-416 GHSA-hr4v-q74p-mj4p: Use after free in Mojo in Google Chrome prior to 108
Use after free in Mojo in Google Chrome prior to 108.0.5359.71 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
OSV
CVE-2022-4178: Use after free in Mojo in Google Chrome prior to 108
osv·2022-11-30·CVSS 8.8
CVE-2022-4178 [HIGH] CVE-2022-4178: Use after free in Mojo in Google Chrome prior to 108
Use after free in Mojo in Google Chrome prior to 108.0.5359.71 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
No detection rules found.
No public exploits indexed.
https://chromereleases.googleblog.com/2022/11/stable-channel-update-for-desktop_29.htmlhttps://crbug.com/1376099https://security.gentoo.org/glsa/202305-10https://security.gentoo.org/glsa/202311-11https://chromereleases.googleblog.com/2022/11/stable-channel-update-for-desktop_29.htmlhttps://crbug.com/1376099https://security.gentoo.org/glsa/202305-10https://security.gentoo.org/glsa/202311-11
2022-11-30
Published