CVE-2022-2294 - WebRTC Heap Buffer Overflow Vulnerability
Project:WebRTC
Product:WebRTC
Date Added:2022-08-25Due Date:2022-09-15
Vulnerability Name
WebRTC Heap Buffer Overflow Vulnerability
Description
WebRTC, an open-source project providing web browsers with real-time communication, contains a heap buffer overflow vulnerability that allows an attacker to perform shellcode execution. This vulnerability impacts web browsers using WebRTC including but not limited to Google Chrome.
Known To Be Used in Ransomware Campaigns?
Known
Action
Apply updates per vendor instructions.
Additional Notes
https://groups.google.com/g/discuss-webrtc/c/5KBtZx2gvcQ
https://nvd.nist.gov/vuln/detail/CVE-2022-2294