PRUEBA AHORA

Chrome 108 Audit

Security Software Vulnerability

Find Outdated Chrome Installations

Google released Chrome 108 for Windows, Linux, and Mac. In this release, Google fixed 28 security issues and added additional features. The new features include:
  • New performance-enhancing features: Memory Saver and Energy Saver mode.
  • Notes for passwords in Google Password Manager.
  • Updates to Google Password Manager on iOS.
  • Chrome installer pins Chrome to the Windows taskbar during the install.
  • Custom default error pages for Progressive Web Apps.
  • New Chrome sync dialog on iOS.
  • Price tracking.
  • Change async methods to sync in FileSystemSyncAccessHandle.
  • Chrome on Linux uses Chrome’s built-in DNS client by default.
  • Improved reporting for internal callback mechanism.
  • Cookies and site data dialog improvements.
  • Improved sharing of previewed files.
  • New and updated policies in Chrome browser, others have been removed.
More details on all of these features can be found on the Chrome Status page. As always, Google takes its time with putting out a larger blog post covering the most important changes however, you can find a very brief summary on the Chrome release page. With the report below, you can easily find which computers in your network do not have this latest Chrome version installed. Simply run the report to get a complete overview of your environment.

Run our Chrome 108 Query

Severity CVE Description
High CVE-2022-4174 Type Confusion in V8.
High CVE-2022-4175 Use after free in Camera Capture.
High CVE-2022-4176 Out of bounds write in Lacros Graphics.
High CVE-2022-4177 Use after free in Extensions.
High CVE-2022-4178 Use after free in Mojo.
High CVE-2022-4179 Use after free in Audio.
High CVE-2022-4180 Use after free in Mojo.
High CVE-2022-4181 Use after free in Forms.
Medium CVE-2022-4182 Inappropriate implementation in Fenced Frames.
Medium CVE-2022-4183 Insufficient policy enforcement in Popup Blocker.
Medium CVE-2022-4184 Insufficient policy enforcement in Autofill.
Medium CVE-2022-4185 Inappropriate implementation in Navigation.
Medium CVE-2022-4186 Insufficient validation of untrusted input in Downloads.
Medium CVE-2022-4187 Insufficient policy enforcement in DevTools.
Medium CVE-2022-4188 Insufficient validation of untrusted input in CORS.
Medium CVE-2022-4189 Insufficient policy enforcement in DevTools.
Medium CVE-2022-4190 Insufficient data validation in Directory.
Medium CVE-2022-4191 Use after free in Sign-In.
Medium CVE-2022-4192 Use after free in Live Caption.
Medium CVE-2022-4193 Insufficient policy enforcement in File System API.
Medium CVE-2022-4194 Use after free in Accessibility.
Medium CVE-2022-4195 Insufficient policy enforcement in Safe Browsing.
 

Google Chrome 108 CVE Codes

Select Top 1000000 tblAssets.AssetID,
tblAssets.AssetName,
tblAssets.Domain,
tsysAssetTypes.AssetTypename As AssetType,
tblAssets.Username,
tblAssets.Userdomain,
Coalesce(tsysOS.Image, tsysAssetTypes.AssetTypeIcon10) As icon,
tblAssets.IPAddress,
tblSoftwareUni.softwareName As Software,
tblSoftware.softwareVersion As Version,
tblSoftwareUni.SoftwarePublisher As Publisher,
tsysIPLocations.IPLocation,
tblAssetCustom.Manufacturer,
tblAssetCustom.Model,
Coalesce(tsysOS.OSname, tblSccmAsset.OsCaption,
tblSccmAsset.OperatingSystemNameandVersion) As OS,
tblAssets.Version As OSVersion,
Case
When tblErrors.ErrorText Is Not Null Or
tblErrors.ErrorText != '' Then
'Scanning Error: ' + tsysasseterrortypes.ErrorMsg
Else ''
End As ScanningErrors,
tblAssets.Lastseen As [Last successful scan],
tblAssets.Lasttried As [Last scan attempt]
From tblAssets
Inner Join tblAssetCustom On tblAssets.AssetID = tblAssetCustom.AssetID
Inner Join tsysAssetTypes On tsysAssetTypes.AssetType = tblAssets.Assettype
Inner Join tsysIPLocations On tsysIPLocations.LocationID =
tblAssets.LocationID
Inner Join tblState On tblState.State = tblAssetCustom.State
Inner Join tblSoftware On tblAssets.AssetID = tblSoftware.AssetID
Inner Join tblSoftwareUni On tblSoftwareUni.SoftID = tblSoftware.softID
Left Outer Join tsysOS On tsysOS.OScode = tblAssets.OScode
Left Outer Join tblSccmAsset On tblAssets.AssetID = tblSccmAsset.AssetId
Left Join (Select Distinct Top 1000000 tblErrors.AssetID As ID,
Max(tblErrors.Teller) As ErrorID
From tblErrors
Group By tblErrors.AssetID) As ScanningError On tblAssets.AssetID =
ScanningError.ID
Left Join tblErrors On ScanningError.ErrorID = tblErrors.Teller
Left Join tsysasseterrortypes On tsysasseterrortypes.Errortype =
tblErrors.ErrorType
Where tblSoftwareUni.softwareName Like '%Google Chrome%' And
tblSoftwareUni.SoftwarePublisher Like '%Google%' And tblState.Statename =
'Active' And ((Cast(ParseName(tblSoftware.softwareVersion, 4) As int) < 108)
Or (Cast(ParseName(tblSoftware.softwareVersion, 4) As int) = 108 And
Cast(ParseName(tblSoftware.softwareVersion, 2) As int) < 5359) Or
(Cast(ParseName(tblSoftware.softwareVersion, 4) As int) = 108 And
Cast(ParseName(tblSoftware.softwareVersion, 2) As int) = 5359 And
Cast(ParseName(tblSoftware.softwareVersion, 1) As int) < 71))
Union
Select Top 1000000 tblAssets.AssetID,
tblAssets.AssetName,
tblAssets.Domain,
tsysAssetTypes.AssetTypename As AssetType,
tblAssets.Username,
tblAssets.Userdomain,
tsysAssetTypes.AssetTypeIcon10 As icon,
tblAssets.IPAddress,
tblSoftwareUni.softwareName As Software,
tblMacApplications.Version As Version,
tblSoftwareUni.SoftwarePublisher As Publisher,
tsysIPLocations.IPLocation,
tblAssetCustom.Manufacturer,
tblAssetCustom.Model,
tblMacOSInfo.SystemVersion As OS,
tblAssets.Version As OSVersion,
Case
When tblErrors.ErrorText Is Not Null Or
tblErrors.ErrorText != '' Then
'Scanning Error: ' + tsysasseterrortypes.ErrorMsg
Else ''
End As ScanningErrors,
tblAssets.Lastseen As [Last successful scan],
tblAssets.Lasttried As [Last scan attempt]
From tblAssets
Inner Join tblAssetCustom On tblAssets.AssetID = tblAssetCustom.AssetID
Inner Join tsysAssetTypes On tsysAssetTypes.AssetType = tblAssets.Assettype
Inner Join tsysIPLocations On tsysIPLocations.LocationID =
tblAssets.LocationID
Inner Join tblState On tblState.State = tblAssetCustom.State
Inner Join tblMacApplications On
tblAssets.AssetID = tblMacApplications.AssetID
Inner Join tblSoftwareUni On tblSoftwareUni.SoftID = tblMacApplications.softid
Inner Join tblMacOSInfo On tblMacOSInfo.AssetID = tblAssets.AssetID
Left Join (Select Distinct Top 1000000 tblErrors.AssetID As ID,
Max(tblErrors.Teller) As ErrorID
From tblErrors
Group By tblErrors.AssetID) As ScanningError On tblAssets.AssetID =
ScanningError.ID
Left Join tblErrors On ScanningError.ErrorID = tblErrors.Teller
Left Join tsysasseterrortypes On tsysasseterrortypes.Errortype =
tblErrors.ErrorType
Where tblSoftwareUni.softwareName Like '%Google Chrome%' And
tblState.Statename = 'Active' And ((Cast(ParseName(tblMacApplications.Version,
4) As int) < 108) Or (Cast(ParseName(tblMacApplications.Version,
4) As int) = 108 And Cast(ParseName(tblMacApplications.Version,
2) As int) < 5359) Or (Cast(ParseName(tblMacApplications.Version,
4) As int) = 108 And Cast(ParseName(tblMacApplications.Version,
2) As int) = 5359 And Cast(ParseName(tblMacApplications.Version,
1) As int) < 71))
Union
Select Top 1000000 tblAssets.AssetID,
tblAssets.AssetName,
tblAssets.Domain,
tsysAssetTypes.AssetTypename As AssetType,
tblLinuxUser.UserName,
tblAssets.Userdomain,
tsysAssetTypes.AssetTypeIcon10 As icon,
tblAssets.IPAddress,
subquery1.Software,
subquery1.Version,
subquery1.Publisher,
tsysIPLocations.IPLocation,
tblAssetCustom.Manufacturer,
tblAssetCustom.Model,
tblLinuxSystem.OSRelease As OS,
tblAssets.Version As OSVersion,
Case
When tblErrors.ErrorText Is Not Null Or
tblErrors.ErrorText != '' Then
'Scanning Error: ' + tsysasseterrortypes.ErrorMsg
Else ''
End As ScanningErrors,
tblAssets.Lastseen As [Last successful scan],
tblAssets.Lasttried As [Last scan attempt]
From tblAssets
Inner Join tblAssetCustom On tblAssets.AssetID = tblAssetCustom.AssetID
Inner Join tsysAssetTypes On tsysAssetTypes.AssetType = tblAssets.Assettype
Inner Join tsysIPLocations On tsysIPLocations.LocationID =
tblAssets.LocationID
Inner Join tblState On tblState.State = tblAssetCustom.State
Inner Join tblLinuxSystem On tblAssets.AssetID = tblLinuxSystem.AssetID
Inner Join tblLinuxUser On tblAssets.AssetID = tblLinuxUser.AssetID
Inner Join tblLinuxUserLogon On tblLinuxUserLogon.Id = tblLinuxUser.id
Inner Join (Select tblLinuxUser.AssetId,
Max(tblLinuxUserLogon.LogonTime) As MaxLogontime
From tblLinuxUser
Inner Join tblLinuxUserLogon On tblLinuxUserLogon.Id = tblLinuxUser.id
Group By tblLinuxUser.assetid) As subquery2 On subquery2.MaxLogontime =
tblLinuxUserLogon.LogonTime
Inner Join (Select tblSoftwareUni.softwareName As Software,
tblSoftwareUni.SoftwarePublisher As Publisher,
tblLinuxSoftware.LastChanged,
tblLinuxSoftware.assetid,
Case
When tblLinuxSoftware.Version Like '%-%' Then
Left(tblLinuxSoftware.Version, CharIndex('-',
tblLinuxSoftware.Version) - 1)
When tblLinuxSoftware.Version Like '%R%' Then
Left(tblLinuxSoftware.Version, CharIndex('R',
tblLinuxSoftware.Version) - 1)
Else tblLinuxSoftware.Version
End As Version
From tblLinuxSoftware
Inner Join tblSoftwareUni On tblSoftwareUni.SoftID =
tblLinuxSoftware.SoftwareUniID
Where tblSoftwareUni.softwareName = 'google-chrome-stable') As subquery1 On
subquery1.assetid = tblAssets.assetid
Left Join (Select Distinct Top 1000000 tblErrors.AssetID As ID,
Max(tblErrors.Teller) As ErrorID
From tblErrors
Group By tblErrors.AssetID) As ScanningError On tblAssets.AssetID =
ScanningError.ID
Left Join tblErrors On ScanningError.ErrorID = tblErrors.Teller
Left Join tsysasseterrortypes On tsysasseterrortypes.Errortype =
tblErrors.ErrorType
Where subquery1.Software = 'google-chrome-stable' And tblState.Statename =
'Active' And ((Cast(ParseName(subquery1.Version, 4) As int) < 108) Or
(Cast(ParseName(subquery1.Version, 4) As int) = 108 And
Cast(ParseName(subquery1.Version, 2) As int) < 5359) Or
(Cast(ParseName(subquery1.Version, 4) As int) = 108 And
Cast(ParseName(subquery1.Version, 2) As int) = 5359 And
Cast(ParseName(subquery1.Version, 1) As int) < 71))
Order By Domain,
AssetName,
Software

Show

Hide