Rewterz Threat Advisory – CVE-2022-31770 – IBM App Connect Enterprise Certified Container Vulnerability
July 6, 2022Rewterz Threat Alert – Emotet – Active IOCs
July 6, 2022Rewterz Threat Advisory – CVE-2022-31770 – IBM App Connect Enterprise Certified Container Vulnerability
July 6, 2022Rewterz Threat Alert – Emotet – Active IOCs
July 6, 2022Severity
High
Analysis Summary
CVE-2022-2296 CVSS:8.8
Google Chrome could allow a remote attacker to execute arbitrary code on the system, caused by a use-after-free in Chrome OS Shell. By persuading a victim to visit a specially crafted Web site, a remote attacker could exploit this vulnerability to execute arbitrary code on the system.
CVE-2022-2295 CVSS:8.8
Google Chrome could allow a remote attacker to execute arbitrary code on the system, caused by a type confusion in V8. By persuading a victim to visit a specially crafted Web site, a remote attacker could exploit this vulnerability to execute arbitrary code on the system.
Impact
- Code Execution
Indicators Of Compromise
CVE
- CVE-2022-2296
- CVE-2022-2295
Affected Vendors
Affected Products
Google Chrome 103
Google Chrome for Android 103
Remediation
Upgrade to the latest version of Chrome, available from the Google Chrome Releases Website.
Google Chrome Releases Website