CVE-2022-1364
Published: 26 July 2022
Summary
CVE-2022-1364 is a high-severity Type Confusion (CWE-843) vulnerability in Google Chrome. Its CVSS base score is 8.8 (High).
Operationally, ranked in the top 4.8% of CVEs by exploit likelihood; CISA has added it to the Known Exploited Vulnerabilities catalog; a public proof-of-concept is referenced.
The strongest mitigations our analysis identified are NIST 800-53 SI-2 (Flaw Remediation) and SC-18 (Mobile Code).
Deeper analysis
CVE-2022-1364 is a type confusion vulnerability (CWE-843) in the V8 Turbofan component of Google Chrome versions prior to 100.0.4896.127. The flaw resides in the JavaScript engine's optimization pipeline and can be triggered by a specially crafted HTML page, resulting in heap corruption.
A remote attacker can exploit the issue by convincing a user to visit a malicious web page. Successful exploitation grants the attacker the ability to corrupt memory and achieve high-impact effects on confidentiality, integrity, and availability without requiring authentication.
Chrome release notes and the associated Gentoo advisory direct users to apply the stable-channel update that resolves the issue in version 100.0.4896.127 and later.
The EPSS score rose materially from lower values to a peak of 0.3373 on 2024-12-17 before receding to the current 0.1751, indicating renewed exploitation interest well after disclosure.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2022-24685
Vulnerability details
Type confusion in V8 Turbofan in Google Chrome prior to 100.0.4896.127 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- CWE(s)
- KEV Date Added
- 15 April 2022
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Directly requires timely application of the vendor patch (Chrome 100.0.4896.127+) that eliminates the type-confusion flaw in V8 Turbofan.
Defines policy and technical restrictions on mobile code (JavaScript) execution, limiting the attack surface that a crafted HTML page can exploit.
Enforces memory-protection mechanisms that can reduce the likelihood of successful heap corruption resulting from the type-confusion condition.