CVSS: 8.8EPSS: 0%CPEs: 4EXPL: 1CVE-2021-30543
https://notcve.org/view.php?id=CVE-2021-30543
07 Jun 2021 — Use after free in Tab Strip in Google Chrome prior to 91.0.4472.77 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. Un uso de la memoria previamente liberada en Tab Strip en Google Chrome anterior a versión 91.0.4472.77, permitía a un atacante que convencía a un usuario de instalar una extensión maliciosa explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada • https://chromereleases.googleblog.com/2021/05/stable-channel-update-for-desktop_25.html • CWE-416: Use After Free •
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 1CVE-2021-30540 – Gentoo Linux Security Advisory 202107-06
https://notcve.org/view.php?id=CVE-2021-30540
07 Jun 2021 — Incorrect security UI in payments in Google Chrome on Android prior to 91.0.4472.77 allowed a remote attacker to perform domain spoofing via a crafted HTML page. Una interfaz de seguridad incorrecta en payments de Google Chrome en Android anterior a versión 91.0.4472.77, permitía a un atacante remoto llevar a cabo una suplantación de dominio por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could allow remote attackers to execute... • https://chromereleases.googleblog.com/2021/05/stable-channel-update-for-desktop_25.html • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •
CVSS: 5.8EPSS: 0%CPEs: 3EXPL: 1CVE-2021-30539 – Gentoo Linux Security Advisory 202107-06
https://notcve.org/view.php?id=CVE-2021-30539
07 Jun 2021 — Insufficient policy enforcement in content security policy in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to bypass content security policy via a crafted HTML page. Una aplicación insuficiente de la política en content security policy en Google Chrome anterior a versión 91.0.4472.77, permitía a un atacante remoto omitir la política de seguridad de contenidos por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which coul... • https://chromereleases.googleblog.com/2021/05/stable-channel-update-for-desktop_25.html • CWE-863: Incorrect Authorization •
CVSS: 4.3EPSS: 0%CPEs: 3EXPL: 1CVE-2021-30538 – Gentoo Linux Security Advisory 202107-06
https://notcve.org/view.php?id=CVE-2021-30538
07 Jun 2021 — Insufficient policy enforcement in content security policy in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to bypass content security policy via a crafted HTML page. Una aplicación insuficiente de la política en content security policy en Google Chrome anterior a versión 91.0.4472.77, permitía a un atacante remoto omitir la política de seguridad de contenidos por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which coul... • https://chromereleases.googleblog.com/2021/05/stable-channel-update-for-desktop_25.html • CWE-863: Incorrect Authorization •
CVSS: 4.3EPSS: 0%CPEs: 3EXPL: 1CVE-2021-30537 – Gentoo Linux Security Advisory 202107-06
https://notcve.org/view.php?id=CVE-2021-30537
07 Jun 2021 — Insufficient policy enforcement in cookies in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to bypass cookie policy via a crafted HTML page. Una aplicación insuficiente de la política en cookies en Google Chrome anterior a versión 91.0.4472.77, permitía a un atacante remoto omitir la política de cookies por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could allow remote attackers to execute arbitrary code. Versio... • https://chromereleases.googleblog.com/2021/05/stable-channel-update-for-desktop_25.html • CWE-863: Incorrect Authorization •
CVSS: 8.1EPSS: 0%CPEs: 3EXPL: 1CVE-2021-30536 – Gentoo Linux Security Advisory 202107-06
https://notcve.org/view.php?id=CVE-2021-30536
07 Jun 2021 — Out of bounds read in V8 in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to potentially exploit stack corruption via a crafted HTML page. Una lectura fuera de límites en V8 en Google Chrome anterior a versión 91.0.4472.77, permitía a un atacante remoto explotar potencialmente corrupción de la pila por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could allow remote attackers to execute arbitrary code. Versions le... • https://chromereleases.googleblog.com/2021/05/stable-channel-update-for-desktop_25.html • CWE-125: Out-of-bounds Read •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 1CVE-2021-30535 – Ubuntu Security Notice USN-5156-1
https://notcve.org/view.php?id=CVE-2021-30535
07 Jun 2021 — Double free in ICU in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Una Doble liberación en ICU en Google Chrome anterior a versión 91.0.4472.77, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada It was discovered that ICU contains a double free issue. An attacker could use this issue to cause a denial of service or possibly execute arbitrary code. • https://chromereleases.googleblog.com/2021/05/stable-channel-update-for-desktop_25.html • CWE-415: Double Free •
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 1CVE-2021-30534 – Gentoo Linux Security Advisory 202107-06
https://notcve.org/view.php?id=CVE-2021-30534
07 Jun 2021 — Insufficient policy enforcement in iFrameSandbox in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Una aplicación insuficiente de políticas en iFrameSandbox en Google Chrome anterior a versión 91.0.4472.77, permitía a un atacante remoto omitir las restricciones de navegación por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could allow remote attackers to e... • https://chromereleases.googleblog.com/2021/05/stable-channel-update-for-desktop_25.html • CWE-863: Incorrect Authorization •
CVSS: 8.8EPSS: 18%CPEs: 3EXPL: 1CVE-2021-30533 – Google Chromium PopupBlocker Security Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2021-30533
07 Jun 2021 — Insufficient policy enforcement in PopupBlocker in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to bypass navigation restrictions via a crafted iframe. Una aplicación insuficiente de las políticas en PopupBlocker en Google Chrome anterior a versión 91.0.4472.77, permitía a un atacante remoto omitir las restricciones de navegación por medio de un iframe diseñado Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could allow remote attackers to execute ... • https://chromereleases.googleblog.com/2021/05/stable-channel-update-for-desktop_25.html • CWE-863: Incorrect Authorization •
CVSS: 4.3EPSS: 0%CPEs: 3EXPL: 1CVE-2021-30532 – Gentoo Linux Security Advisory 202107-06
https://notcve.org/view.php?id=CVE-2021-30532
07 Jun 2021 — Insufficient policy enforcement in Content Security Policy in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to bypass content security policy via a crafted HTML page. Una aplicación insuficiente de las políticas en Content Security Policy en Google Chrome anterior a versión 91.0.4472.77, permitía a un atacante remoto omitir la política de seguridad de contenidos por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which co... • https://chromereleases.googleblog.com/2021/05/stable-channel-update-for-desktop_25.html •