CVE-2022-0795 – This vulnerability is a type confusion flaw in ... (How to Fix)

Q: What is the severity of CVE-2022-0795?

CVE-2022-0795 has a CVSS score of 8.8 (HIGH). This vulnerability is a type confusion flaw in Chrome's Blink layout engine that allows attackers to trigger heap corruption through malicious HTML pages. Successful exploitation could lead to arbitrary code execution or browser crashes. All Chrome users on versions before 99.0.4844.51 are affected.

📋 TL;DR

This vulnerability is a type confusion flaw in Chrome's Blink layout engine that allows attackers to trigger heap corruption through malicious HTML pages. Successful exploitation could lead to arbitrary code execution or browser crashes. All Chrome users on versions before 99.0.4844.51 are affected.

💻 Affected Systems

Products:

Google Chrome
Chromium-based browsers

Versions: All versions prior to 99.0.4844.51

Operating Systems: Windows, macOS, Linux, Android, iOS

Default Config Vulnerable: ⚠️ Yes

Notes: All default Chrome configurations are vulnerable. Chromium-based browsers like Microsoft Edge, Brave, etc. may also be affected if using vulnerable Chromium versions.

📦 What is this software?

Chrome by Google

Google Chrome is the world's most popular web browser, used by over 3 billion users globally across Windows, macOS, Linux, Android, and iOS platforms. As a Chromium-based browser developed by Google, Chrome dominates the browser market with approximately 65% market share, making it a critical compon...

Learn more about Chrome →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution with the same privileges as the Chrome process, potentially leading to full system compromise if Chrome runs with elevated privileges.

🟠

Likely Case

Browser crash (denial of service) or limited memory corruption leading to information disclosure.

🟢

If Mitigated

Browser sandboxing prevents full system compromise, limiting impact to Chrome process isolation boundaries.

🌐 Internet-Facing: HIGH - Attackers can exploit via malicious websites without user interaction beyond visiting the page.

🏢 Internal Only: MEDIUM - Internal users could be targeted via phishing or compromised internal sites.

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: MEDIUM

Exploitation requires crafting specific HTML to trigger type confusion. The bug report (crbug.com/1282782) contains technical details that could aid exploit development.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 99.0.4844.51 and later

Vendor Advisory: https://chromereleases.googleblog.com/2022/03/stable-channel-update-for-desktop.html

Restart Required: Yes

Instructions:

1. Open Chrome menu > Help > About Google Chrome. 2. Chrome will automatically check for updates and install version 99.0.4844.51 or later. 3. Click 'Relaunch' to restart Chrome with the fix.

🔧 Temporary Workarounds

Disable JavaScript

all

Prevents exploitation by disabling JavaScript execution, but breaks most website functionality.

chrome://settings/content/javascript > Block

Use Site Isolation

all

Enhances Chrome's site isolation to limit impact of memory corruption.

chrome://flags/#enable-site-per-process > Enable

🧯 If You Can't Patch

Use alternative browsers until Chrome can be updated
Implement network filtering to block known malicious sites and restrict web browsing

🔍 How to Verify

Check if Vulnerable:

Check Chrome version: If version is less than 99.0.4844.51, system is vulnerable.

Check Version:

google-chrome --version (Linux) or chrome://version (all platforms)

Verify Fix Applied:

Confirm Chrome version is 99.0.4844.51 or higher.

📡 Detection & Monitoring

Log Indicators:

Chrome crash reports with memory corruption signatures
Unexpected Chrome process termination

Network Indicators:

Requests to known malicious domains hosting exploit code
Unusual HTML/JavaScript patterns in web traffic

SIEM Query:

source="chrome_crash_reports" AND (message="heap corruption" OR message="type confusion" OR message="ACCESS_VIOLATION")

📊 Metadata

CVE ID: CVE-2022-0795

CVSS v3 Score: 8.8 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE: CWE-843

Published: April 5, 2022

Last Updated: November 21, 2024

🔗 References

https://chromereleases.googleblog.com/2022/03/stable-channel-update-for-desktop.html Release Notes,Vendor Advisory
https://crbug.com/1282782 Issue Tracking,Permissions Required,Vendor Advisory
https://security.gentoo.org/glsa/202208-25 Third Party Advisory
https://chromereleases.googleblog.com/2022/03/stable-channel-update-for-desktop.html Release Notes,Vendor Advisory
https://crbug.com/1282782 Issue Tracking,Permissions Required,Vendor Advisory
https://security.gentoo.org/glsa/202208-25 Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2022-0795, you might also want to check these: