What is CVE-2022-3075?

A critical vulnerability in Google Chrome allows remote attackers to perform a sandbox escape via a crafted HTML page. Immediate action is required to mitigate potential risks associated with this flaw.

What is the severity of CVE-2022-3075?

CVE-2022-3075 has a severity rating of CRITICAL with a CVSS base score of 9.6.

Is CVE-2022-3075 in CISA KEV?

Yes. CVE-2022-3075 is listed in the CISA Known Exploited Vulnerabilities (KEV) catalog. Organizations should prioritize remediation.

CVE-2022-3075 | Critical Vulnerability in Google Chrome

CVE-2022-3075 is a critical vulnerability found in Google Chrome prior to version 105.0.5195.102. This vulnerability allows a remote attacker who has compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. The severity of this vulnerability is rated as critical, with a CVSS score of 9.6, indicating it poses a significant risk to users and organizations.

The potential impact of this vulnerability is severe, as it could allow an attacker to access sensitive information, alter data integrity, and disrupt availability. Given the widespread use of Google Chrome across various operating systems and the critical nature of the vulnerability, it is imperative for organizations to prioritize remediation efforts.

As of now, there is no public exploit confirmed for this vulnerability, but the fact that it is included in the Known Exploited Vulnerabilities (KEV) catalog emphasizes its urgency. Organizations are advised to apply the necessary updates and patches as per vendor instructions to mitigate risks.

Organizations should prioritize patching immediately. The critical nature of this vulnerability, coupled with its potential for exploitation, necessitates swift action to safeguard systems and data.

Vulnerability Details

The vulnerability is characterized by insufficient data validation in Mojo within Google Chrome. This flaw allows an attacker, upon compromising the renderer process, to perform a sandbox escape through a crafted HTML page.

The vulnerability is classified under CWE-20, which pertains to improper input validation. It has been assigned a CVSS score of 9.6, indicating a critical severity level. The attack vector is categorized as network-based, with low complexity, requiring no privileges but necessitating user interaction.

The affected products include Google Chrome and Fedora. The vulnerability was published on September 26, 2022, and remains a significant concern for users still running vulnerable versions.

Technical Analysis

The root cause of CVE-2022-3075 lies in the insufficient validation of data within the Mojo component, which is an integral part of the Chrome rendering engine. This failure allows user-supplied data to bypass security checks, leading to a potential sandbox escape.

The attack vector for this vulnerability is network-based, meaning it can be exploited remotely without requiring physical access to the target system. The attack complexity is low, allowing attackers to utilize crafted HTML pages to exploit this vulnerability.

No privileges are required for exploitation, but user interaction is necessary, as the victim must open the crafted HTML page for the attack to succeed. The potential impacts are severe, with high confidentiality, integrity, and availability impacts.

Risk & Impact Analysis

The deployment risk associated with CVE-2022-3075 is substantial, particularly for organizations relying heavily on web applications. Given the critical nature of this vulnerability, the potential for exploitation increases the blast radius significantly, affecting not only individual users but also organizational infrastructure.

Organizations must recognize the urgency of addressing this vulnerability based on its high CVSS score and inclusion in the KEV catalog. The likelihood of exploitation in the wild necessitates that organizations act swiftly to mitigate risks.

Given the nature of the vulnerability and the potential impacts, organizations should schedule remediation as part of their priority patch cycle.

Exploitation Status

Signal	Status
Known Exploit	No
Public PoC	No
Actively Exploited	Yes
Ransomware Use	No

Affected Versions

The affected versions include all versions of Google Chrome prior to 105.0.5195.102. Additionally, Fedora 37 is also impacted by this vulnerability. Organizations should ensure they are operating on patched versions to mitigate risks.

Mitigation & Remediation

To mitigate the risks associated with CVE-2022-3075, organizations should apply the latest patches provided by Google. Users should update their Google Chrome to version 105.0.5195.102 or later. Additionally, for those running Fedora, it is crucial to ensure that the operating system is updated to the latest version.

For organizations unable to immediately apply the patch, it is recommended to implement configuration hardening measures, including restricting access to untrusted web content and enhancing network controls to prevent exploitation. Monitoring for any unusual activities or attempts to access the vulnerable components is also advisable.

Organizations should validate remediation through continuous penetration testing to identify similar weaknesses.

Detection Guidance

Organizations should monitor logs for indicators of exploitation, including unusual renderer process activity. Implementing behavioral anomaly detection systems can help identify potential exploitation attempts. Additionally, maintaining network signatures that detect traffic patterns associated with the exploitation of this vulnerability is recommended.

AppSecure Threat Intelligence Insight

The long-term significance of CVE-2022-3075 lies in its representation of ongoing challenges in web security, particularly around insufficient data validation. As browsers continue to evolve, such vulnerabilities serve as reminders of the need for rigorous validation mechanisms.

This incident underscores the importance of proactive security measures and regular updates to safeguard against similar vulnerabilities. Security teams should prioritize continuous monitoring and testing to adapt to the evolving threat landscape.

Organizations looking to enhance their security posture can benefit from engaging in penetration testing services to continuously assess vulnerabilities.

Furthermore, organizations should stay informed about trends and changes in the vulnerability landscape by following relevant security blogs and advisories, such as those provided by vulnerability management programs.

Known Exploitation Timeline

CVE-2022-3075 was added to the KEV catalog on September 8, 2022. This timeline indicates the potential for exploitation shortly after the vulnerability was disclosed, emphasizing the need for immediate action.

EPSS Risk Context

The EPSS score for this vulnerability is 0.0212, placing it in the 84th percentile. This indicates a relatively low likelihood of exploitation compared to other vulnerabilities, but it still represents a significant risk that should not be ignored.

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

CVE ID	Title	Severity	Vulnerability Type	Published
CVE-2025-65418	CVE-2025-65418: High Vulnerability in docuFORM Managed Print Service Client	HIGH	Path Traversal	May 11, 2026
CVE-2025-65417	CVE-2025-65417: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	XSS	May 11, 2026
CVE-2025-65416	CVE-2025-65416: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Unrestricted File Upload	May 11, 2026
CVE-2025-65415	CVE-2025-65415: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Session Fixation	May 11, 2026
CVE-2025-61314	CVE-2025-61314: High Vulnerability in GmbH Mecury Managed Print Services	HIGH	XSS	May 11, 2026

CVE-2022-3075: Critical Vulnerability in Google Chrome