CVSS: 8.8EPSS: 1%CPEs: 3EXPL: 0CVE-2021-37985 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2021-37985
26 Oct 2021 — Use after free in V8 in Google Chrome prior to 95.0.4638.54 allowed a remote attacker who had convinced a user to allow for connection to debugger to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en V8 en Google Chrome versiones anteriores a 95.0.4638.54, permitía a un atacante remoto que hubiera convencido a un usuario para que permitiera la conexión con el depurador explotar potencialmente la corrupción de la pila por medio de una página HTML diseñada ... • https://chromereleases.googleblog.com/2021/10/stable-channel-update-for-desktop_19.html • CWE-416: Use After Free •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2021-37996 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2021-37996
26 Oct 2021 — Insufficient validation of untrusted input Downloads in Google Chrome prior to 95.0.4638.54 allowed a remote attacker to bypass navigation restrictions via a malicious file. Una comprobación insuficiente de entradas no confiables en Downloads en Google Chrome versiones anteriores a 95.0.4638.54, permitían a un atacante remoto omitir las restricciones de navegación por medio de un archivo malicioso Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, de... • https://chromereleases.googleblog.com/2021/10/stable-channel-update-for-desktop_19.html • CWE-20: Improper Input Validation •
CVSS: 8.8EPSS: 1%CPEs: 3EXPL: 0CVE-2021-37992 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2021-37992
26 Oct 2021 — Out of bounds read in WebAudio in Google Chrome prior to 95.0.4638.54 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Una lectura fuera de límites en WebAudio en Google Chrome versiones anteriores a 95.0.4638.54, permitía a un atacante remoto explotar potencialmente la corrupción de la pila por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or informatio... • https://chromereleases.googleblog.com/2021/10/stable-channel-update-for-desktop_19.html • CWE-125: Out-of-bounds Read •
CVSS: 8.8EPSS: 1%CPEs: 3EXPL: 0CVE-2021-37988 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2021-37988
26 Oct 2021 — Use after free in Profiles in Google Chrome prior to 95.0.4638.54 allowed a remote attacker who convinced a user to engage in specific gestures to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en Profiles en Google Chrome versiones anteriores a 95.0.4638.54, permitía a un atacante remoto que convenciera a un usuario de realizar gestos específicos explotar potencialmente la corrupción de la pila por medio de una página HTML diseñada Multiple security issu... • https://chromereleases.googleblog.com/2021/10/stable-channel-update-for-desktop_19.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 1%CPEs: 3EXPL: 0CVE-2021-37993 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2021-37993
26 Oct 2021 — Use after free in PDF Accessibility in Google Chrome prior to 95.0.4638.54 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en PDF Accessibility en Google Chrome versiones anteriores a 95.0.4638.54, permitía a un atacante remoto explotar potencialmente la corrupción de la pila por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial ... • https://chromereleases.googleblog.com/2021/10/stable-channel-update-for-desktop_19.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 1%CPEs: 3EXPL: 0CVE-2021-37983 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2021-37983
26 Oct 2021 — Use after free in Dev Tools in Google Chrome prior to 95.0.4638.54 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en Dev Tools en Google Chrome versiones anteriores a 95.0.4638.54, permitía a un atacante remoto explotar potencialmente la corrupción de la pila por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or in... • https://chromereleases.googleblog.com/2021/10/stable-channel-update-for-desktop_19.html • CWE-416: Use After Free •
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2021-37994 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2021-37994
26 Oct 2021 — Inappropriate implementation in iFrame Sandbox in Google Chrome prior to 95.0.4638.54 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Una implementación inapropiada en iFrame Sandbox en Google Chrome versiones anteriores a 95.0.4638.54, permitía a un atacante remoto omitir las restricciones de navegación por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or i... • https://chromereleases.googleblog.com/2021/10/stable-channel-update-for-desktop_19.html •
CVSS: 9.6EPSS: 2%CPEs: 3EXPL: 0CVE-2021-37981 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2021-37981
26 Oct 2021 — Heap buffer overflow in Skia in Google Chrome prior to 95.0.4638.54 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Un desbordamiento del búfer de la pila en Skia en Google Chrome versiones anteriores a 95.0.4638.54, permitía a un atacante remoto que hubiera comprometido el proceso de renderización llevar a cabo potencialmente un escape del sandbox por medio de una página HTML diseñada Multiple security issues were discovere... • https://chromereleases.googleblog.com/2021/10/stable-channel-update-for-desktop_19.html • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2021-37990 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2021-37990
26 Oct 2021 — Inappropriate implementation in WebView in Google Chrome on Android prior to 95.0.4638.54 allowed a remote attacker to leak cross-origin data via a crafted app. Una implementación inapropiada de WebView en Google Chrome en Android versiones anteriores a 95.0.4638.54, permitía a un atacante remoto filtrar datos de origen cruzado por medio de una aplicación diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information dis... • https://chromereleases.googleblog.com/2021/10/stable-channel-update-for-desktop_19.html •
CVSS: 8.8EPSS: 1%CPEs: 3EXPL: 0CVE-2021-37982 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2021-37982
26 Oct 2021 — Use after free in Incognito in Google Chrome prior to 95.0.4638.54 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en Incognito en Google Chrome versiones anteriores a 95.0.4638.54, permitía a un atacante remoto explotar potencialmente la corrupción de la pila por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or in... • https://chromereleases.googleblog.com/2021/10/stable-channel-update-for-desktop_19.html • CWE-416: Use After Free •