So what exactly is this vulnerability that Google calls CVE-2022-2856? How could it be exploited and with what consequences? CNA spoke to three cybersecurity companies to find out: What is CVE-2022-2856?ĬVE-2022-2856 is a vulnerability related to Intents, a function that processes user input on Google Chrome. "Users are also encouraged to enable the automatic update function in Chrome to ensure that their software is updated promptly," said SingCERT, a unit under the Cyber Security Agency of Singapore (CSA).
While Google did not give more information about this vulnerability, usually to prevent further exploitation until more users apply the security update, its Chrome Releases blog stated that the bug involves "insufficient validation of untrusted input in Intents". SINGAPORE: The Singapore Computer Emergency Response Team (SingCERT) on Thursday (Aug 18) urged Google Chrome users to install the latest security updates immediately, citing a high-severity vulnerability in the web browser that is being exploited.
0 kommentar(er)
