Rewterz Threat Advisory – Multiple Google Chrome V8 Vulnerabilities

Rewterz Threat Advisory – Multiple SolarWinds Orion Platform Vulnerabilities

October 1, 2022

Rewterz Threat Advisory – Node.js css-what module Vulnerability

October 1, 2022

Rewterz Threat Advisory – Multiple Google Chrome V8 Vulnerabilities

Severity

High

Analysis Summary

CVE-2022-3373 CVSS:8.8

Google Chrome could allow a remote attacker to execute arbitrary code on the system, caused by an out-of-bounds write in V8. By persuading a victim to visit a specially crafted Web site, a remote attacker could exploit this vulnerability to execute arbitrary code or cause a denial of service condition on the system.

CVE-2022-3370 CVSS:8.8

Google Chrome could allow a remote attacker to execute arbitrary code on the system, caused by a use-after-free in Custom Elements. By persuading a victim to visit a specially crafted Web site, a remote attacker could exploit this vulnerability to execute arbitrary code or cause a denial of service condition on the system.

Impact

Code Execution

Indicators Of Compromise

CVE

CVE-2022-3373
CVE-2022-3370

Affected Vendors

Google

Affected Products

Google Chrome 106.0

Remediation

Upgrade to the latest version of Chrome, available from the Google Chrome Releases Website.

Google Chrome Releases Website

Rewterz Threat Advisory – Multiple SolarWinds Orion Platform Vulnerabilities

Rewterz Threat Advisory – Node.js css-what module Vulnerability

Rewterz Threat Advisory – Multiple Google Chrome V8 Vulnerabilities

Severity

Analysis Summary

Impact

Indicators Of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan