How severe is CVE-2022-3308?

CVE-2022-3308 has a CVSS v3 score of 7.4 (HIGH).

CVE-2022-3308

Name: chrome
Author: google

7.4HIGH

Insufficient policy enforcement in developer tools in Google Chrome prior to 106.0.5249.62 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security

Published: 11/1/2022Updated: 5/6/2025

Description

Insufficient policy enforcement in developer tools in Google Chrome prior to 106.0.5249.62 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)

AI AnalysisPowered by AI

Affected Products

googlechrome

References

https://chromereleases.googleblog.com/2022/09/stable-channel-update-for-desktop_27.html
Release NotesVendor Advisory
https://crbug.com/1342722
ExploitIssue TrackingVendor Advisory
https://chromereleases.googleblog.com/2022/09/stable-channel-update-for-desktop_27.html
Release NotesVendor Advisory
https://crbug.com/1342722
ExploitIssue TrackingVendor Advisory