| VID |
28937 |
| Severity |
40 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The version of Google Chrome installed on the remote Windows host is prior to 103.0.5060.114. It is, therefore, affected by multiple vulnerabilities as referenced in the 2022_07_stable-channel-update-for-desktop advisory.
- Heap buffer overflow in WebRTC (CVE-2022-2294)
- Javascript engine V8 Type confusionb (CVE-2022-2295)
- CHROME OS SHELL memory corruption (CVE-2022-2296)
* References:
http://www.nessus.org/u?8f10a4e5
https://crbug.com/1341043
https://crbug.com/1336869
https://crbug.com/1327087
* Platforms Affected:
Google Chrome versions prior to 103.0.5060.114
Microsoft Windows Any version |
| Recommendation |
Upgrade to the latest version Google Chrome (103.0.5060.114 or later), available from the Google Web site at http://www.google.com/chrome/ |
| Related URL |
CVE-2022-2294,CVE-2022-2295,CVE-2022-2296 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
