Heap Corruption via UI Interactions in Lacros Graphics on Chrome OS and Lacros prior to 108.0.5359.71

Heap Corruption via UI Interactions in Lacros Graphics on Chrome OS and Lacros prior to 108.0.5359.71

CVE-2022-4176 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Out of bounds write in Lacros Graphics in Google Chrome on Chrome OS and Lacros prior to 108.0.5359.71 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via UI interactions. (Chromium security severity: High)

Learn more about our Cis Benchmark Audit For Google Chrome.