cve/2022/CVE-2022-0290.md

### [CVE-2022-0290](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0290)
![](https://img.shields.io/static/v1?label=Product&message=Chrome&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3C%2097.0.4692.99%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Use%20after%20free&color=brighgreen)

### Description

Use after free in Site isolation in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page.

### POC

#### Reference
- http://packetstormsecurity.com/files/166080/Chrome-RenderFrameHostImpl-Use-After-Free.html
- http://packetstormsecurity.com/files/166080/Chrome-RenderFrameHostImpl-Use-After-Free.html

#### Github
- https://github.com/ARPSyndicate/cvemon