Search for vulnerabilities
Vulnerability details: VCID-4vep-wkcf-aaan
Vulnerability ID VCID-4vep-wkcf-aaan
Aliases CVE-2022-1640
Summary Use after free in Sharing in Google Chrome prior to 101.0.4951.64 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page.
Status Published
Exploitability 0.5
Weighted Severity 8.0
Risk 4.0
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-416 Use After Free
System Score Found at
epss 0.00338 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00338 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00338 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00338 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00362 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00362 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00362 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00362 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00362 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00362 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00362 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00362 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00362 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00362 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00362 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00362 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00375 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00401 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00401 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00401 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00401 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00401 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00401 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00401 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00401 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00401 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00401 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00401 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00401 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00401 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00401 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00401 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00401 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00401 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00401 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00401 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00401 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00401 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00401 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.00401 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
epss 0.006 https://api.first.org/data/v1/epss?cve=CVE-2022-1640
cvssv3 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-1640
cvssv3.1 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-1640
archlinux High https://security.archlinux.org/AVG-2720
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2022-1640
https://chromereleases.googleblog.com/2022/05/stable-channel-update-for-desktop_10.html
https://crbug.com/1320592
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1633
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1634
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1635
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1636
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1637
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1638
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1639
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1640
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1641
https://security.gentoo.org/glsa/202208-25
AVG-2720 https://security.archlinux.org/AVG-2720
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
CVE-2022-1640 https://nvd.nist.gov/vuln/detail/CVE-2022-1640
No exploits are available.
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2022-1640
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2022-1640
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.71025
EPSS Score 0.00338
Published At Dec. 17, 2024, midnight
Date Actor Action Source VulnerableCode Version
There are no relevant records.