Security
Headlines
HeadlinesLatestCVEs

Headline

Apple Safari Safest, Google Chrome Riskiest Browser of 2022- Study

By Waqas According to researchers, Google Chrome, Mozilla Firefox, and Microsoft Edge browser contained the most vulnerabilities in 2022. This is a post from HackRead.com Read the original post: Apple Safari Safest, Google Chrome Riskiest Browser of 2022- Study

HackRead
#vulnerability#web#android#apple#google#microsoft#oracle#chrome#firefox

A new report from VPN service provider Atlas VPN has revealed startling details about how safe and secure some of the most popular internet browsers are. Google Chrome has been declared the most vulnerable browser of 2022, whereas Apple Safari is the safest.

Here are more details from the report. The report’s findings are based on the VulDB vulnerability database, covering the period from January 1st, 2022 to October 5th, 2022.

Google Chrome Most Vulnerable Browser

Google Chrome is regarded as one of the most reliable browsers, and that’s why most users prefer it as their default web browser. In fact, Chrome’s market cap was around 61.96% in August 2022, reported SimilarWeb.

Therefore, it is surprising to know that the world’s most popular browser is also the riskiest. According to Atlas VPN’s report, Chrome contains 303 vulnerabilities and leads the charts with 3,159 cumulative vulnerabilities.

  1. Minecraft declared the most malware-infected game
  2. US and China Exposed Most Cloud Databases in 2021
  3. VirusTotal Reveals Apps Most Exploited to Spread Malware
  4. Google, Microsoft and Oracle generated most vulnerabilities
  5. Revealed: The 200 Most used and Worst Passwords of 2021
  6. Microsoft Office Most Exploited Software in Malware Attacks
  7. Top 10 Android Educational Apps That Collect Most User Data

Vulnerability Details

Chrome is the only browser in which new vulnerabilities have been discovered in October 2022 so far. These include the following vulnerabilities:

  • CVE-2022-3307
  • CVE-2022-3318
  • CVE-2022-3314
  • CVE-2022-3311
  • CVE-2022-3309

Chrome users can fix these issues by updating the browser with version 106.0.5249.61. After Google Chrome, the next most vulnerable browser is Mozilla Firefox, which contains 117 vulnerabilities.

According to Atlas VPN’s blog post, Microsoft Edge was the third most vulnerable web browser, with around 103 vulnerabilities, marking a 61% increase compared to the vulnerabilities discovered in October 2021.

Is Safari Browser the Safest of All?

Although Apple Safari wasn’t rated the riskiest browser of 2022, it doesn’t mean it is the cleanest and most securest of all. Safari browser had 26 vulnerabilities discovered in the first three-quarters of 2022, and 1,139 vulnerabilities have been discovered since the browser’s release. However, it was declared the safest because of the comparatively low vulnerability count in 2022.

Interestingly, there weren’t any documented vulnerabilities in the Opera browser this year, and so far, there have been just 344 vulnerabilities affecting it. But, since Opera shares the Chromium browser engine, Chromium vulnerabilities may impact it.

Nevertheless, web browser users should continually update the latest version to remain safe and always download extensions and plug-ins from credible, official sources.

I am a UK-based cybersecurity journalist with a passion for covering the latest happenings in cyber security and tech world. I am also into gaming, reading and investigative journalism

Related news

CVE-2023-0036: en/security-disclosure/2023/2023-01.md · OpenHarmony/security - Gitee.com

platform_callback_stub in misc subsystem within OpenHarmony-v3.0.5 and prior versions has an authentication bypass vulnerability which allows an "SA relay attack".Local attackers can bypass authentication and attack other SAs with high privilege.

CVE-2022-3314

Use after free in logging in Google Chrome prior to 106.0.5249.62 allowed a remote attacker who had compromised a WebUI process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)

CVE-2022-3309

Use after free in assistant in Google Chrome on ChromeOS prior to 106.0.5249.62 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially perform a sandbox escape via specific UI gestures. (Chrome security severity: Medium)

CVE-2022-3307

Use after free in media in Google Chrome prior to 106.0.5249.62 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chrome security severity: High)

Microsoft Patch Tuesday for October 2022 — Snort rules and prominent vulnerabilities

By Jon Munshaw and Vanja Svajcer. Microsoft released its monthly security update Tuesday, disclosing 83 vulnerabilities across the company’s hardware and software line, including seven critical issues in Windows’ point-to-point tunneling protocol.  October's security update features 11 critical vulnerabilities, with the remainder being “important.”   One of the most notable vulnerabilities Microsoft fixed this month is CVE-2022-41038, a remote code execution issue in Microsoft SharePoint. There are several other SharePoint vulnerabilities included in this month’s Patch Tuesday, though this seems the most severe, as Microsoft continues it to be “more likely” to be exploited.  An attacker must be authenticated to the target site with the correct permissions to use manage lists in SharePoint to exploit this vulnerability, and eventually gain the ability to execute remote code on the SharePoint server.   CVE-2022-37968, an elevation of privilege vulnerability in Azure Arc Connect, has th...

Microsoft Patch Tuesday for October 2022 — Snort rules and prominent vulnerabilities

Microsoft released its monthly security update Tuesday, disclosing 83 vulnerabilities across the company’s hardware and software line.

Microsoft Patch Tuesday for October 2022 — Snort rules and prominent vulnerabilities

Microsoft released its monthly security update Tuesday, disclosing 83 vulnerabilities across the company’s hardware and software line.

Google Quashes 5 High-Severity Bugs With Chrome 106 Update

External researchers contributed 16 of the 20 security updates included in the new Chrome 106 Stable Channel rollout, including five high-severity bugs.