10
Google Chrome Remote Code Execution Vulnerability
source link: https://www.hkcert.org/security-bulletin/google-chrome-remote-code-execution-vulnerability_20220419
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
Google Chrome Remote Code Execution Vulnerability
Release Date: 19 Apr 2022
903 Views
RISK: Extremely High Risk
TYPE: Clients - Browsers
A vulnerability was identified in Google Chrome. A remote user can exploit this vulnerability to trigger remote code execution on the targeted system.
Note:
CVE-2022-1364 is being exploited in the wild.
The vulnerability is related to the V8 JavaScript engine to process JavaScript code. The vulnerability can exploit the V8 engine to treat a JS object as an JS array and run arbitrary code on the targeted system.
Impact
- Remote Code Execution
System / Technologies affected
- Google Chrome prior to 100.0.4896.127
Solutions
Before installation of the software, please visit the software vendor web-site for more details.
Apply fixes issued by the vendor:
- Update to version 100.0.4896.127
Vulnerability Identifier
Source
Related Link
Recommend
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK