How severe is CVE-2022-3308?

CVE-2022-3308 has a CVSS v3 score of 7.4 (HIGH).

CVE-2022-3308

Name: chrome
Author: google

7.4HIGH

Insufficient policy enforcement in developer tools in Google Chrome prior to 106.0.5249.62 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security

Publicado: 11/1/2022Actualizado: 5/6/2025

Descripción

Insufficient policy enforcement in developer tools in Google Chrome prior to 106.0.5249.62 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)

Análisis IAImpulsado por IA

Productos Afectados

googlechrome

Referencias

https://chromereleases.googleblog.com/2022/09/stable-channel-update-for-desktop_27.html
Release NotesVendor Advisory
https://crbug.com/1342722
ExploitIssue TrackingVendor Advisory
https://chromereleases.googleblog.com/2022/09/stable-channel-update-for-desktop_27.html
Release NotesVendor Advisory
https://crbug.com/1342722
ExploitIssue TrackingVendor Advisory