CVE-2022-4923

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2022-4923

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-4923.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2022-4923

Downstream

DEBIAN-CVE-2022-4923

DSA-5089-1

Withdrawn

2026-01-27T04:18:40.348141Z

Published

2023-07-29T00:15:11Z

Modified

2026-01-27T04:18:40.348141Z

Severity

3.1 (Low) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:L/I:L/A:N CVSS Calculator

Summary

[none]

Details

Inappropriate implementation in Omnibox in Google Chrome prior to 99.0.4844.51 allowed an attacker in a privileged network position to perform a man-in-the-middle attack via malicious network traffic. (Chromium security severity: Low)

References

https://chromereleases.googleblog.com/2022/03/stable-channel-update-for-desktop.html
https://crbug.com/1251065
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PQKT7EGDD2P3L7S3NXEDDRCPK4NNZNWJ/

CVE-2022-4923

Affected packages