CVE-2022-3653

HIGH

Google Chrome < 107.0.5304.62 - Heap Buffer Overflow in Vulkan via Crafted HTML Page

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2022-3653. PoCs published by SpiralBL0CK.

AI-analyzed exploit summary This PoC demonstrates a heap buffer overflow in ANGLE's Vulkan backend (CVE-2022-3653) by exploiting multiview rendering. It allocates queries with viewCount=1, then switches to viewCount=2, causing SwiftShader to write out-of-bounds data.

Description

Heap buffer overflow in Vulkan in Google Chrome prior to 107.0.5304.62 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Exploits (1)

nomisec WORKING POC 7 stars

by SpiralBL0CK · poc

https://github.com/SpiralBL0CK/CVE-2022-3653

View Code ZIP pw:eip

This PoC demonstrates a heap buffer overflow in ANGLE's Vulkan backend (CVE-2022-3653) by exploiting multiview rendering. It allocates queries with viewCount=1, then switches to viewCount=2, causing SwiftShader to write out-of-bounds data.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: ANGLE Vulkan backend with multiview rendering

No auth needed

Prerequisites: Vulkan-capable GPU · ANGLE with Vulkan backend · Multiview support

MITRE ATT&CK

T1210 - Exploitation of Remote Services

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (2)

Core 2

Core References

Release Notes, Vendor Advisory

https://chromereleases.googleblog.com/2022/10/stable-channel-update-for-desktop_25.html

Issue Tracking, Permissions Required, Vendor Advisory

https://crbug.com/1354271

Scores

CVSS v3 8.8

EPSS 0.0059

EPSS Percentile 43.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-787

Status published

Products (1)

google/chrome < 107.0.5304.62

Published Nov 01, 2022

Tracked Since Feb 18, 2026