CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2021-30548 – Gentoo Linux Security Advisory 202107-06
https://notcve.org/view.php?id=CVE-2021-30548
15 Jun 2021 — Use after free in Loader in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de la memoria previamente liberada en Loader en Google Chrome versiones anteriores a 91.0.4472.101, permitía a un atacante remoto explotar potencialmente la corrupción de la pila por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could allow remote attackers to execute ar... • https://chromereleases.googleblog.com/2021/06/stable-channel-update-for-desktop.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 0%CPEs: 5EXPL: 0CVE-2021-30547 – chromium-browser: Out of bounds write in ANGLE
https://notcve.org/view.php?id=CVE-2021-30547
15 Jun 2021 — Out of bounds write in ANGLE in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. Una escritura fuera de límites en ANGLE en Google Chrome versiones anteriores a 91.0.4472.101 permitía a un atacante remoto potencialmente llevar a cabo un acceso a la memoria fuera de límites por medio de una página HTML diseñada It was discovered that Thunderbird didn't ignore IMAP server responses prior to completion of the STARTTLS han... • https://chromereleases.googleblog.com/2021/06/stable-channel-update-for-desktop.html • CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2021-30546 – Gentoo Linux Security Advisory 202107-06
https://notcve.org/view.php?id=CVE-2021-30546
15 Jun 2021 — Use after free in Autofill in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de la memoria previamente liberada en Autofill en Google Chrome versiones anteriores a 91.0.4472.101, permitía a un atacante remoto explotar potencialmente la corrupción de la pila por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could allow remote attackers to execut... • https://chromereleases.googleblog.com/2021/06/stable-channel-update-for-desktop.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2021-30545 – Gentoo Linux Security Advisory 202107-06
https://notcve.org/view.php?id=CVE-2021-30545
15 Jun 2021 — Use after free in Extensions in Google Chrome prior to 91.0.4472.101 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. Un uso de la memoria previamente liberada en Extensions en Google Chrome versiones anteriores a 91.0.4472.101, permitía a un atacante remoto que hubiera comprometido el proceso de renderización explotar potencialmente la corrupción de la pila por medio de una página HTML diseñada Multiple vulnerabilities have b... • https://chromereleases.googleblog.com/2021/06/stable-channel-update-for-desktop.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2021-30544 – Gentoo Linux Security Advisory 202107-06
https://notcve.org/view.php?id=CVE-2021-30544
15 Jun 2021 — Use after free in BFCache in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de la memoria previamente liberada en BFCache en Google Chrome versiones anteriores a 91.0.4472.101, permitía a un atacante remoto explotar potencialmente la corrupción de la pila por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could allow remote attackers to execute ... • https://chromereleases.googleblog.com/2021/06/stable-channel-update-for-desktop.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 0%CPEs: 4EXPL: 1CVE-2021-30542
https://notcve.org/view.php?id=CVE-2021-30542
07 Jun 2021 — Use after free in Tab Strip in Google Chrome prior to 91.0.4472.77 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. Un uso de la memoria previamente liberada en Tab Strip en Google Chrome anterior a versión 91.0.4472.77, permitía a un atacante que convencía a un usuario de instalar una extensión maliciosa explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada • https://chromereleases.googleblog.com/2021/05/stable-channel-update-for-desktop_25.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 0%CPEs: 4EXPL: 1CVE-2021-30543
https://notcve.org/view.php?id=CVE-2021-30543
07 Jun 2021 — Use after free in Tab Strip in Google Chrome prior to 91.0.4472.77 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. Un uso de la memoria previamente liberada en Tab Strip en Google Chrome anterior a versión 91.0.4472.77, permitía a un atacante que convencía a un usuario de instalar una extensión maliciosa explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada • https://chromereleases.googleblog.com/2021/05/stable-channel-update-for-desktop_25.html • CWE-416: Use After Free •
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 1CVE-2021-30540 – Gentoo Linux Security Advisory 202107-06
https://notcve.org/view.php?id=CVE-2021-30540
07 Jun 2021 — Incorrect security UI in payments in Google Chrome on Android prior to 91.0.4472.77 allowed a remote attacker to perform domain spoofing via a crafted HTML page. Una interfaz de seguridad incorrecta en payments de Google Chrome en Android anterior a versión 91.0.4472.77, permitía a un atacante remoto llevar a cabo una suplantación de dominio por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could allow remote attackers to execute... • https://chromereleases.googleblog.com/2021/05/stable-channel-update-for-desktop_25.html • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •
CVSS: 4.3EPSS: 0%CPEs: 3EXPL: 1CVE-2021-30538 – Gentoo Linux Security Advisory 202107-06
https://notcve.org/view.php?id=CVE-2021-30538
07 Jun 2021 — Insufficient policy enforcement in content security policy in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to bypass content security policy via a crafted HTML page. Una aplicación insuficiente de la política en content security policy en Google Chrome anterior a versión 91.0.4472.77, permitía a un atacante remoto omitir la política de seguridad de contenidos por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which coul... • https://chromereleases.googleblog.com/2021/05/stable-channel-update-for-desktop_25.html • CWE-863: Incorrect Authorization •
CVSS: 5.8EPSS: 0%CPEs: 3EXPL: 1CVE-2021-30539 – Gentoo Linux Security Advisory 202107-06
https://notcve.org/view.php?id=CVE-2021-30539
07 Jun 2021 — Insufficient policy enforcement in content security policy in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to bypass content security policy via a crafted HTML page. Una aplicación insuficiente de la política en content security policy en Google Chrome anterior a versión 91.0.4472.77, permitía a un atacante remoto omitir la política de seguridad de contenidos por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which coul... • https://chromereleases.googleblog.com/2021/05/stable-channel-update-for-desktop_25.html • CWE-863: Incorrect Authorization •