ENGLISH Search Menu
Alerts & News Security Alerts Security News

SECURITY ALERTS

A Vulnerability (CVE-2022-3075) Exists in Google Chrome, Microsoft Edge, Brave, and Vivaldi Could Allow for Arbitrary Code Execution

DESCRIPTION:
A Vulnerability (CVE-2022-3075) Exists in Google Chrome, Microsoft Edge, Brave, and Vivaldi which are based on Chromium. The vulnerability exists due to insufficient validation of user-supplied input within the Mojo component in Google Chrome. A remote attacker can trick the victim into visiting a specially crafted website and execute arbitrary code on the system.

 

AFFECTED RELEASES:
Google Chrome prior to 105.0.5195.102
Microsoft Edge prior to 105.0.1343.27
Brave prior to 1.45.26
Vivaldi prior to 5.4.2753.47

 

SOLUTION:
Upgrade to at least Google Chrome 105.0.5195.102 by following steps:
1. Open the Google Chrome browser.
2. Enter “chrome://settings/help” in the address bar. The window that appears will automatically check for updates and show you the current version of Chrome.
3. After Chrome is updated, click the “RELAUNCH” option to restart Chrome and complete the update.

Upgrade to at least Microsoft Edge 105.0.1343.27 by following steps:
1. Open the Microsoft Edge browser.
2. Enter “edge://settings/help” in the address bar. The window that appears will automatically check for updates and show you the current version of Edge.
3. After Edge is updated, click the “RELAUNCH” option to restart Edge and complete the update.

Upgrade to at least Brave 1.45.26 by following steps:
1. Open the Brave browser.
2. Enter “brave://settings/help” in the address bar. The window that appears will automatically check for updates and show you the current version of Brave.
3. After Brave is updated, click the “RELAUNCH” option to restart Brave and complete the update.

Upgrade to at least Vivaldi 5.4.2753.47 by following steps:
1. Open the Vivaldi browser.
2. Click Vivaldi menu button > Help > Check for Updates.
3. When an update is available, click on Install Update in the bottom right corner to complete updating Vivaldi.

 

REFERENCE:
1. https://chromereleases.googleblog.com/2022/09/stable-channel-update-for-desktop.html
2. https://www.cybersecurity-help.cz/vdb/SB2022090301
3. https://www.ithome.com.tw/news/152882
4. https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-3075
5. https://github.com/brave/brave-browser/releases/tag/v1.45.26
6. ttps://vivaldi.com/blog/desktop/minor-update-six-5-4/
 

 Back To Top