CVE-2022-2856 - Google Chromium Intents Insufficient Input Validation Vulnerability

Vulnerability Name

Google Chromium Intents Insufficient Input Validation Vulnerability

Description

Google Chromium Intents contains an insufficient validation of untrusted input vulnerability that allows a remote attacker to browse to a malicious website via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply updates per vendor instructions.

Additional Notes

https://chromereleases.googleblog.com/2022/08/stable-channel-update-for-desktop_16.html

https://nvd.nist.gov/vuln/detail/CVE-2022-2856