Home > Cyber News > CVE-2022-4135 – Critical Vulnerability in Google Chrome 🕷
CYBER NEWS

CVE-2022-4135 – Critical Vulnerability in Google Chrome 🕷

by   |  Last Update:  |  0 Comments  
CVE-2022-4135 - Critical Vulnerability in Google Chrome 🕷

Google has effectively updated its browser to a newer version, fixing a critical vulnerability, called CVE-2022-4135. According to recent information, this vulnerability concerns your hardware and more specifically your GPU.

CVE-2022-4135 Vulnerability Fixed In Google Chrome Version 107.0.5304.121

The most recent update of Google Chrome is believed to fix the CVE-2022-4135 vulnerability, as reported by researchers at National Institute of Standards and Technology (NIST for short).

CVE-2022-4135 – What Is It & In-Depth Information

The newly discovered CVE-2022-4135 vulnerability is categorized by researchers as a critical type of issue for Google Chrome. Prior to version 107.0.5304.121 of the browser, the vulnerability gives the ability of an attacker, who has gained access to the rendering processes to run a sandbox escape attack using an illegally modified web page, coded in HTML.

This results in a heap buffer overflow, which affects mainly the GPU (Graphic Processing Unit or Video Card for short) and causes it to overflow. The possible misuses of this vulnerability could be:

The vulnerability has been initially detected at 11/24/2022 and security experts rank it among the high severity level vulnerabilities for Google Chrome browser. Recommendations are to update Chrome or any Chromium-based browser for that matter to the following version:

Chrome on macOS 107.0.5304.121 2022-11-25
Chrome on Linux 107.0.5304.121 2022-11-25
Chrome on Android 107.0.5304.141 2022-11-25
Chrome on iOS 107.0.5304.101 2022-11-09

Ventsislav Krastev

Ventsislav is a cybersecurity expert at SensorsTechForum since 2015. He has been researching, covering, helping victims with the latest malware infections plus testing and reviewing software and the newest tech developments. Having graduated Marketing as well, Ventsislav also has passion for learning new shifts and innovations in cybersecurity that become game changers. After studying Value Chain Management, Network Administration and Computer Administration of System Applications, he found his true calling within the cybersecrurity industry and is a strong believer in the education of every user towards online safety and security.

More Posts - Website

Follow Me:
Twitter

Related posts:
  1. Adobe Patches 112 Vulnerabilities in Latest Patch Package (CVE-2018-5007) Adobe has released the latest patch package that addresses a...
  2. CVE-2022-3723: Severe Vulnerability in Google Chrome What Is CVE-2022-3723? Google rolled out a security fix for...
  3. Which is the Most Secure Browser for 2015 – Firefox, Chrome, Internet Explorer, Safari A Web browser can be two things. A person who...
  4. CVE-2022-31656: Critical VMware Authentication Bypass Vulnerability VMware recently released another set of patches addressing a number...
  5. New Critical Bugs in Firefox, Chrome and Edge (CVE-2020-16044) Users should patch several new browser vulnerabilities affecting Chrome, Firefox,...
  6. Update Your Google Chrome to Fix the CVE-2021-30551 Vulnerability Have you patched your Chrome browser? Google just fixed a...
  7. VMware Discloses Critical Vulnerabilities CVE-2022-22951, CVE-2022-22952 Two new VMware vulnerabilities have been disclosed, CVE-2022-22951 and CVE-2022-22952,...
  8. Google, Microsoft Bugs Top the 20 Most Prevalent Enterprise Vulnerabilities Cybersecurity firm Tenable just released their Vulnerability Intelligence Report which...

Leave a Comment

Your email address will not be published. Required fields are marked *

This website uses cookies to improve user experience. By using our website you consent to all cookies in accordance with our Privacy Policy.
I Agree