CVE-2022-3038 - Google Chromium Network Service Use-After-Free Vulnerability
Project:Google
Product:Chromium Network Service
Date Added:2023-03-30Due Date:2023-04-20
Vulnerability Name
Google Chromium Network Service Use-After-Free Vulnerability
Description
Google Chromium Network Service contains a use-after-free vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://chromereleases.googleblog.com/2022/08/stable-channel-update-for-desktop_30.html
https://nvd.nist.gov/vuln/detail/CVE-2022-3038
