« List of all CVEs

CVE-2022-2294

Published: 7/28/2022 Last updated: 10/21/2025 Reserved: 7/3/2022

Heap buffer overflow in WebRTC in Google Chrome prior to 103.0.5060.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

CNA assigner: Chrome (ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28) Requested by: n/a

Metrics

Version Score Severity Vector String
3.1 8.8 High CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Opam packages affected (1)

javascriptcore

Products affected (2)

Product Vendor Version
Chrome Google < 2fce20decc6a83f16dd73744150c4e7ea6c97c21
Chrome Google < 494c91e1e9413b407d12166a61b84200d4d54fac

References (34)