CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2021-37995 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2021-37995
26 Oct 2021 — Inappropriate implementation in WebApp Installer in Google Chrome prior to 95.0.4638.54 allowed a remote attacker to potentially overlay and spoof the contents of the Omnibox (URL bar) via a crafted HTML page. Una implementación inapropiada en WebApp Installer en Google Chrome versiones anteriores a 95.0.4638.54, permitía a un atacante remoto superponer y falsificar el contenido de la Omnibox (barra de URL) por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which cou... • https://chromereleases.googleblog.com/2021/10/stable-channel-update-for-desktop_19.html •
CVSS: 8.8EPSS: 1%CPEs: 3EXPL: 0CVE-2021-37986 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2021-37986
26 Oct 2021 — Heap buffer overflow in Settings in Google Chrome prior to 95.0.4638.54 allowed a remote attacker to engage with Dev Tools to potentially exploit heap corruption via a crafted HTML page. Un desbordamiento del búfer de la pila en Settings de Google Chrome versiones anteriores a 95.0.4638.54, permitía a un atacante remoto usar las herramientas de desarrollo para aprovechar una corrupción de la pila por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result i... • https://chromereleases.googleblog.com/2021/10/stable-channel-update-for-desktop_19.html • CWE-787: Out-of-bounds Write •
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2021-37989 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2021-37989
26 Oct 2021 — Inappropriate implementation in Blink in Google Chrome prior to 95.0.4638.54 allowed a remote attacker to abuse content security policy via a crafted HTML page. Una implementación inapropiada en Blink en Google Chrome versiones anteriores a 95.0.4638.54, permitía a un atacante remoto abusar de la política de seguridad de contenidos por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or informatio... • https://chromereleases.googleblog.com/2021/10/stable-channel-update-for-desktop_19.html •
CVSS: 7.5EPSS: 1%CPEs: 3EXPL: 0CVE-2021-37991 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2021-37991
26 Oct 2021 — Race in V8 in Google Chrome prior to 95.0.4638.54 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Race en V8 en Google Chrome versiones anteriores a 95.0.4638.54, permitía a un atacante remoto explotar potencialmente la corrupción de la pila por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure. • https://chromereleases.googleblog.com/2021/10/stable-channel-update-for-desktop_19.html • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 8.8EPSS: 2%CPEs: 3EXPL: 0CVE-2021-37984 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2021-37984
26 Oct 2021 — Heap buffer overflow in PDFium in Google Chrome prior to 95.0.4638.54 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un desbordamiento del búfer de la pila en PDFium en Google Chrome versiones anteriores a 95.0.4638.54, permitía a un atacante remoto explotar potencialmente la corrupción de la pila por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or in... • https://chromereleases.googleblog.com/2021/10/stable-channel-update-for-desktop_19.html • CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 1%CPEs: 3EXPL: 0CVE-2021-37987 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2021-37987
26 Oct 2021 — Use after free in Network APIs in Google Chrome prior to 95.0.4638.54 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en las API de red en Google Chrome versiones anteriores a 95.0.4638.54, permitía a un atacante remoto explotar potencialmente la corrupción de la pila por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of servi... • https://chromereleases.googleblog.com/2021/10/stable-channel-update-for-desktop_19.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 0%CPEs: 4EXPL: 0CVE-2021-37977 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2021-37977
12 Oct 2021 — Use after free in Garbage Collection in Google Chrome prior to 94.0.4606.81 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de memoria previamente liberada en Garbage Collection en Google Chrome versiones anteriores a 94.0.4606.81, permitía a un atacante remoto explotar potencialmente la corrupción de la pila por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denia... • https://chromereleases.googleblog.com/2021/10/stable-channel-update-for-desktop.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 2%CPEs: 4EXPL: 0CVE-2021-37978 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2021-37978
12 Oct 2021 — Heap buffer overflow in Blink in Google Chrome prior to 94.0.4606.81 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un desbordamiento del búfer de la pila en Blink en Google Chrome versiones anteriores a 94.0.4606.81, permitía a un atacante remoto explotar potencialmente la corrupción de la pila por medio de una página HTML diseñada Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or info... • https://chromereleases.googleblog.com/2021/10/stable-channel-update-for-desktop.html • CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 1%CPEs: 4EXPL: 1CVE-2021-37979 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2021-37979
12 Oct 2021 — heap buffer overflow in WebRTC in Google Chrome prior to 94.0.4606.81 allowed a remote attacker who convinced a user to browse to a malicious website to potentially exploit heap corruption via a crafted HTML page. Un desbordamiento del búfer de la pila en WebRTC en Google Chrome versiones anteriores a 94.0.4606.81, permitía a un atacante remoto que convenciera a un usuario de navegar por un sitio web malicioso explotar potencialmente la corrupción de la pila por medio de una página HTML diseñada Multiple se... • https://chromereleases.googleblog.com/2021/10/stable-channel-update-for-desktop.html • CWE-787: Out-of-bounds Write •
CVSS: 7.4EPSS: 0%CPEs: 5EXPL: 1CVE-2021-37980 – Debian Security Advisory 5046-1
https://notcve.org/view.php?id=CVE-2021-37980
12 Oct 2021 — Inappropriate implementation in Sandbox in Google Chrome prior to 94.0.4606.81 allowed a remote attacker to potentially bypass site isolation via Windows. Una implementación inapropiada de Sandbox en Google Chrome versiones anteriores a 94.0.4606.81, permitía a un atacante remoto omitir potencialmente el aislamiento del sitio por medio de Windows Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure. • https://github.com/ZeusBox/CVE-2021-37980 •