Search for vulnerabilities
Vulnerability details: VCID-wcgc-mz55-aaad
Vulnerability ID VCID-wcgc-mz55-aaad
Aliases CVE-2022-2008
Summary Double free in WebGL in Google Chrome prior to 102.0.5005.115 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Status Published
Exploitability 0.5
Weighted Severity 7.9
Risk 4.0
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-415 Double Free
System Score Found at
epss 0.00240 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00240 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00240 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00240 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00240 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00240 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00240 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00240 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00240 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00240 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00240 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00240 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00240 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00240 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00240 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00240 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00318 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00318 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00318 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00318 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00318 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00318 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00318 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00318 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00318 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00318 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00318 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00318 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00318 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00318 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00318 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00318 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00318 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00318 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00318 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00318 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00318 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00318 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00318 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00318 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00318 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00318 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00318 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00318 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00318 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00339 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00339 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00339 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00339 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00339 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00339 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00339 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00339 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00339 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00339 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00339 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00339 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00339 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00339 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00339 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00339 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00339 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00339 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00339 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00339 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00339 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00339 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00411 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00411 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00411 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00411 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00411 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00411 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00411 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00411 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00411 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00723 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00723 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00723 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00723 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00723 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00723 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00723 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00723 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00723 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00723 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.00723 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
epss 0.01221 https://api.first.org/data/v1/epss?cve=CVE-2022-2008
cvssv3 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-2008
cvssv3.1 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-2008
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2022-2008
https://chromereleases.googleblog.com/2022/06/stable-channel-update-for-desktop.html
https://crbug.com/1317673
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2007
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2008
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2010
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2011
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T4NMJURTG5RO3TGD7ZMIQ6Z4ZZ3SAVYE/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T4NMJURTG5RO3TGD7ZMIQ6Z4ZZ3SAVYE/
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*
CVE-2022-2008 https://nvd.nist.gov/vuln/detail/CVE-2022-2008
No exploits are available.
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2022-2008
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2022-2008
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.62394
EPSS Score 0.00240
Published At Nov. 1, 2024, midnight
Date Actor Action Source VulnerableCode Version
There are no relevant records.