CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 1CVE-2021-30519 – Gentoo Linux Security Advisory 202107-06
https://notcve.org/view.php?id=CVE-2021-30519
28 May 2021 — Use after free in Payments in Google Chrome prior to 90.0.4430.212 allowed an attacker who convinced a user to install a malicious payments app to potentially exploit heap corruption via a crafted HTML page. Un uso de la memoria previamente liberada en Payments de Google Chrome versiones anteriores a 90.0.4430.212, permitió a un atacante que convencía a un usuario de instalar una aplicación de pagos maliciosa para explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada Multip... • https://chromereleases.googleblog.com/2021/05/stable-channel-update-for-desktop.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 1CVE-2021-30520 – Gentoo Linux Security Advisory 202107-06
https://notcve.org/view.php?id=CVE-2021-30520
28 May 2021 — Use after free in Tab Strip in Google Chrome prior to 90.0.4430.212 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. Un uso de la memoria previamente liberada en Tab Strip de Google Chrome versiones anteriores a 90.0.4430.212, permitió a un atacante que convencía a un usuario de instalar una extensión maliciosa para explotar potencialmente la corrupción de la pila por medio de una página HTML diseñada Multiple vulnerabi... • https://chromereleases.googleblog.com/2021/05/stable-channel-update-for-desktop.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 1%CPEs: 5EXPL: 0CVE-2021-21232 – Gentoo Linux Security Advisory 202104-08
https://notcve.org/view.php?id=CVE-2021-21232
30 Apr 2021 — Use after free in Dev Tools in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de la memoria previamente liberada en Dev Tools en Google Chrome versiones anteriores a 90.0.4430.93, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada. Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execut... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_26.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 0%CPEs: 6EXPL: 0CVE-2021-21233 – Gentoo Linux Security Advisory 202104-08
https://notcve.org/view.php?id=CVE-2021-21233
30 Apr 2021 — Heap buffer overflow in ANGLE in Google Chrome on Windows prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un desbordamiento del búfer de la pila en ANGLE en Google Chrome en Windows versiones anteriores a 90.0.4430.93, permitía a un atacante remoto explotar potencialmente la corrupción de la pila por medio de una página HTML diseñada. Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the ... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_26.html • CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 1%CPEs: 5EXPL: 0CVE-2021-21231 – Gentoo Linux Security Advisory 202104-08
https://notcve.org/view.php?id=CVE-2021-21231
30 Apr 2021 — Insufficient data validation in V8 in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Una comprobación insuficiente de datos en V8 en Google Chrome versiones anteriores a 90.0.4430.93, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada. Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execution... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_26.html • CWE-787: Out-of-bounds Write •
CVSS: 6.5EPSS: 0%CPEs: 6EXPL: 0CVE-2021-21229 – Gentoo Linux Security Advisory 202104-08
https://notcve.org/view.php?id=CVE-2021-21229
30 Apr 2021 — Incorrect security UI in downloads in Google Chrome on Android prior to 90.0.4430.93 allowed a remote attacker to perform domain spoofing via a crafted HTML page. La Interfaz de Usuario de seguridad incorrecta en downloads en Google Chrome en Android versiones anteriores a 90.0.4430.93, permitía a un atacante remoto llevar a cabo una suplantación de dominio por medio de una página HTML diseñada. Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the ar... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_26.html • CWE-346: Origin Validation Error •
CVSS: 8.8EPSS: 0%CPEs: 5EXPL: 0CVE-2021-21230 – Gentoo Linux Security Advisory 202104-08
https://notcve.org/view.php?id=CVE-2021-21230
30 Apr 2021 — Type confusion in V8 in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Una confusión de tipos en V8 en Google Chrome versiones anteriores a 90.0.4430.93, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada. Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execution of code. Versions less than 9... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_26.html • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 4.3EPSS: 0%CPEs: 5EXPL: 0CVE-2021-21228 – Gentoo Linux Security Advisory 202104-08
https://notcve.org/view.php?id=CVE-2021-21228
30 Apr 2021 — Insufficient policy enforcement in extensions in Google Chrome prior to 90.0.4430.93 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension. La aplicación de políticas insuficiente en extensions de Google Chrome versiones anteriores a 90.0.4430.93, permitía a un atacante que convenció a un usuario de instalar una extensión maliciosa para omitir restricciones de navegación por medio de una Chrome Extension diseñada. Multiple ... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_26.html • CWE-863: Incorrect Authorization •
CVSS: 8.8EPSS: 0%CPEs: 5EXPL: 0CVE-2021-21227 – Gentoo Linux Security Advisory 202104-08
https://notcve.org/view.php?id=CVE-2021-21227
30 Apr 2021 — Insufficient data validation in V8 in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Una comprobación insuficiente de datos en V8 en Google Chrome versiones anteriores a 90.0.4430.93, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada. Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execution... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_26.html • CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 1%CPEs: 5EXPL: 0CVE-2021-21225 – Debian Security Advisory 4906-1
https://notcve.org/view.php?id=CVE-2021-21225
26 Apr 2021 — Out of bounds memory access in V8 in Google Chrome prior to 90.0.4430.85 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un acceso a la memoria fuera de límites en V8 en Google Chrome versiones anteriores a 90.0.4430.85, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execution ... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_20.html • CWE-787: Out-of-bounds Write •