CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 1CVE-2021-30518 – Gentoo Linux Security Advisory 202107-06
https://notcve.org/view.php?id=CVE-2021-30518
28 May 2021 — Heap buffer overflow in Reader Mode in Google Chrome prior to 90.0.4430.212 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un desbordamiento del búfer de la pila en Reader Mode de Google Chrome versiones anteriores a 90.0.4430.212, permitió a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could allow remote attackers... • https://chromereleases.googleblog.com/2021/05/stable-channel-update-for-desktop.html • CWE-787: Out-of-bounds Write •
CVSS: 8.1EPSS: 0%CPEs: 3EXPL: 1CVE-2021-30511 – Gentoo Linux Security Advisory 202107-06
https://notcve.org/view.php?id=CVE-2021-30511
28 May 2021 — Out of bounds read in Tab Groups in Google Chrome prior to 90.0.4430.212 allowed an attacker who convinced a user to install a malicious extension to perform an out of bounds memory read via a crafted HTML page. La lectura fuera de límites en Tab Groups en Google Chrome versiones anteriores a 90.0.4430.212, permitió a un atacante que convenciera a un usuario de instalar una extensión maliciosa para llevar a cabo una lectura de memoria fuera de límites por medio de una página HTML diseñada Multiple vulnerabi... • https://chromereleases.googleblog.com/2021/05/stable-channel-update-for-desktop.html • CWE-125: Out-of-bounds Read •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 1CVE-2021-30517 – Gentoo Linux Security Advisory 202107-06
https://notcve.org/view.php?id=CVE-2021-30517
28 May 2021 — Type confusion in V8 in Google Chrome prior to 90.0.4430.212 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un desbordamiento del búfer de la pila en History de Google Chrome versiones anteriores a 90.0.4430.212, permitió a un atacante remoto que había comprometido el proceso de renderización explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of wh... • https://chromereleases.googleblog.com/2021/05/stable-channel-update-for-desktop.html • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 8.8EPSS: 0%CPEs: 6EXPL: 0CVE-2021-21233 – Gentoo Linux Security Advisory 202104-08
https://notcve.org/view.php?id=CVE-2021-21233
30 Apr 2021 — Heap buffer overflow in ANGLE in Google Chrome on Windows prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un desbordamiento del búfer de la pila en ANGLE en Google Chrome en Windows versiones anteriores a 90.0.4430.93, permitía a un atacante remoto explotar potencialmente la corrupción de la pila por medio de una página HTML diseñada. Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the ... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_26.html • CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 1%CPEs: 5EXPL: 0CVE-2021-21232 – Gentoo Linux Security Advisory 202104-08
https://notcve.org/view.php?id=CVE-2021-21232
30 Apr 2021 — Use after free in Dev Tools in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de la memoria previamente liberada en Dev Tools en Google Chrome versiones anteriores a 90.0.4430.93, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada. Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execut... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_26.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 1%CPEs: 5EXPL: 0CVE-2021-21231 – Gentoo Linux Security Advisory 202104-08
https://notcve.org/view.php?id=CVE-2021-21231
30 Apr 2021 — Insufficient data validation in V8 in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Una comprobación insuficiente de datos en V8 en Google Chrome versiones anteriores a 90.0.4430.93, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada. Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execution... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_26.html • CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 0%CPEs: 5EXPL: 0CVE-2021-21230 – Gentoo Linux Security Advisory 202104-08
https://notcve.org/view.php?id=CVE-2021-21230
30 Apr 2021 — Type confusion in V8 in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Una confusión de tipos en V8 en Google Chrome versiones anteriores a 90.0.4430.93, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada. Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execution of code. Versions less than 9... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_26.html • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 6.5EPSS: 0%CPEs: 6EXPL: 0CVE-2021-21229 – Gentoo Linux Security Advisory 202104-08
https://notcve.org/view.php?id=CVE-2021-21229
30 Apr 2021 — Incorrect security UI in downloads in Google Chrome on Android prior to 90.0.4430.93 allowed a remote attacker to perform domain spoofing via a crafted HTML page. La Interfaz de Usuario de seguridad incorrecta en downloads en Google Chrome en Android versiones anteriores a 90.0.4430.93, permitía a un atacante remoto llevar a cabo una suplantación de dominio por medio de una página HTML diseñada. Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the ar... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_26.html • CWE-346: Origin Validation Error •
CVSS: 4.3EPSS: 0%CPEs: 5EXPL: 0CVE-2021-21228 – Gentoo Linux Security Advisory 202104-08
https://notcve.org/view.php?id=CVE-2021-21228
30 Apr 2021 — Insufficient policy enforcement in extensions in Google Chrome prior to 90.0.4430.93 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension. La aplicación de políticas insuficiente en extensions de Google Chrome versiones anteriores a 90.0.4430.93, permitía a un atacante que convenció a un usuario de instalar una extensión maliciosa para omitir restricciones de navegación por medio de una Chrome Extension diseñada. Multiple ... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_26.html • CWE-863: Incorrect Authorization •
CVSS: 8.8EPSS: 0%CPEs: 5EXPL: 0CVE-2021-21227 – Gentoo Linux Security Advisory 202104-08
https://notcve.org/view.php?id=CVE-2021-21227
30 Apr 2021 — Insufficient data validation in V8 in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Una comprobación insuficiente de datos en V8 en Google Chrome versiones anteriores a 90.0.4430.93, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada. Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execution... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_26.html • CWE-787: Out-of-bounds Write •