High severity8.8NVD Advisory· Published Sep 26, 2022· Updated Jun 17, 2026
CVE-2022-2998
CVE-2022-2998
Description
Use after free in Browser Creation in Google Chrome prior to 104.0.5112.101 allowed a remote attacker who had convinced a user to engage in a specific UI interaction to potentially exploit heap corruption via a crafted HTML page.
Affected products
2Patches
Vulnerability mechanics
References
2- chromereleases.googleblog.com/2022/08/stable-channel-update-for-desktop_16.htmlnvdRelease NotesVendor Advisory
- crbug.com/1329794nvdPermissions RequiredVendor Advisory
News mentions
0No linked articles in our index yet.