← ExploitWatch
HomeExploited Vulnerabilities

CVE-2022-2856 — Actively Exploited: Chromium Intents (Google)

Google Chromium Intents contains an insufficient validation of untrusted input vulnerability that allows a remote attacker to browse to a malicious website via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge,

CVE IDCVE-2022-2856
VendorGoogle
ProductChromium Intents
Vulnerability nameGoogle Chromium Intents Insufficient Input Validation Vulnerability
Date added2022-08-18
Remediation due2022-09-08
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionGoogle Chromium Intents contains an insufficient validation of untrusted input vulnerability that allows a remote attacker to browse to a malicious website via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →