CVE-2022-2856: Google Chrome Code Execution Vulnerability

Author : Sangfor Technologies
Published Date : 19 Aug 2022
Last Modified Date : 06 Sep 2022

Tag :

About CVE-2022-2856

Vulnerability Name	Google Chrome Code Execution Vulnerability (CVE-2022-2856)
Attack Type	Code Injection
Time Discovered	2022-08-16
Updated Time	2022-08-18
CVE ID	CVE-2022-2856

Summary

A remote code execution vulnerability exists in the Chrome component. The vulnerability is due to insufficient validation of untrusted input data by Intents, which allows Google Chrome to remotely execute code. Attackers can use this vulnerability to construct malicious data to execute remote code execution attacks without authorization, and finally obtain the highest privileges on the server.

Affected Versions

Google Chrome for Android < 104.0.5112.97

Solution

The latest official version has been released, and affected users are advised to update and upgrade to the latest version in time. The link is as follows: https://chromereleases.googleblog.com/2022/08/chrome-for-android-update_17.html

Meet the Author

Sangfor Technologies

Sangfor Technologies is a leading vendor of Cyber Security and Cloud Computing solutions. The majority of the blogs that you are seeing here are written by professionals working at Sangfor. We have a team of content writers, product managers and marketing experts who are taking care of writing articles on various topics that are relevant to our audience. Our team ensures that the articles published are factually correct and helpful to our customers and partners to know more about the recent trends on Cyber Security and Cloud, and how it can help their organizations.