CVSS: 8.8EPSS: 1%CPEs: 5EXPL: 0CVE-2021-21214 – Debian Security Advisory 4906-1
https://notcve.org/view.php?id=CVE-2021-21214
26 Apr 2021 — Use after free in Network API in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to potentially exploit heap corruption via a crafted Chrome Extension. Un uso de la memoria previamente liberada en Network API en Google Chrome versiones anteriores a 90.0.4430.72, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una extensión de Chrome diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in th... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_14.html • CWE-416: Use After Free •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2021-21215 – Debian Security Advisory 4906-1
https://notcve.org/view.php?id=CVE-2021-21215
26 Apr 2021 — Inappropriate implementation in Autofill in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to spoof security UI via a crafted HTML page. Una implementación inapropiada en Autofill en Google Chrome versiones anteriores a 90.0.4430.72, permitió a un atacante remoto falsificar la Interfaz de Usuario de seguridad por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execution of code. Versions... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_14.html • CWE-290: Authentication Bypass by Spoofing •
CVSS: 8.8EPSS: 1%CPEs: 5EXPL: 0CVE-2021-21213 – Debian Security Advisory 4906-1
https://notcve.org/view.php?id=CVE-2021-21213
26 Apr 2021 — Use after free in WebMIDI in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de la memoria previamente liberada en WebMIDI en Google Chrome versiones anteriores a 90.0.4430.72, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execution o... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_14.html • CWE-416: Use After Free •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2021-21211 – Debian Security Advisory 4906-1
https://notcve.org/view.php?id=CVE-2021-21211
26 Apr 2021 — Inappropriate implementation in Navigation in Google Chrome on iOS prior to 90.0.4430.72 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Una implementación inapropiada en Navigation en Google Chrome en iOS versiones anteriores a 90.0.4430.72, permitió a un atacante remoto filtrar datos de origen cruzado por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execution of code. ... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_14.html • CWE-346: Origin Validation Error •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2021-21212 – Debian Security Advisory 4906-1
https://notcve.org/view.php?id=CVE-2021-21212
26 Apr 2021 — Incorrect security UI in Network Config UI in Google Chrome on ChromeOS prior to 90.0.4430.72 allowed a remote attacker to potentially compromise WiFi connection security via a malicious WAP. La Iinterfaz de Usuario de seguridad incorrecta en Network Config UI en Google Chrome en ChromeOS versiones anteriores a 90.0.4430.72, permitía a un atacante remoto comprometer potencialmente la seguridad de la conexión WiFi por medio de un WAP malicioso Multiple vulnerabilities have been found in Chromium and Google C... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_14.html •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2021-21210 – Debian Security Advisory 4906-1
https://notcve.org/view.php?id=CVE-2021-21210
26 Apr 2021 — Inappropriate implementation in Network in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to potentially access local UDP ports via a crafted HTML page. Una implementación inapropiada en Network en Google Chrome versiones anteriores a 90.0.4430.72, permitió a un atacante remoto acceder potencialmente a los puertos UDP locales por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execution ... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_14.html •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2021-21208 – Debian Security Advisory 4906-1
https://notcve.org/view.php?id=CVE-2021-21208
26 Apr 2021 — Insufficient data validation in QR scanner in Google Chrome on iOS prior to 90.0.4430.72 allowed an attacker displaying a QR code to perform domain spoofing via a crafted QR code. Una comprobación insuficiente de datos en QR scanner en Google Chrome en iOS versiones anteriores a 90.0.4430.72, permitió a un atacante que mostraba un código QR llevar a cabo una suplantación de dominio por medio de un código QR diseñado Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which c... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_14.html • CWE-20: Improper Input Validation •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2021-21209 – Debian Security Advisory 4906-1
https://notcve.org/view.php?id=CVE-2021-21209
26 Apr 2021 — Inappropriate implementation in storage in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Una implementación inapropiada en storage en Google Chrome versiones anteriores a 90.0.4430.72, permitió a un atacante remoto filtrar datos de origen cruzado por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execution of code. Versions less than 9... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_14.html • CWE-346: Origin Validation Error •
CVSS: 8.6EPSS: 0%CPEs: 5EXPL: 0CVE-2021-21207 – Debian Security Advisory 4906-1
https://notcve.org/view.php?id=CVE-2021-21207
26 Apr 2021 — Use after free in IndexedDB in Google Chrome prior to 90.0.4430.72 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted Chrome Extension. Un uso de la memoria previamente liberada en IndexedDB en Google Chrome versiones anteriores a 90.0.4430.72, permitía a un atacante convencer a un usuario de instalar una extensión maliciosa para llevar a cabo potencialmente un escape del sandbox por medio de una extensión de Chrome diseñada Multip... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_14.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 0%CPEs: 6EXPL: 0CVE-2021-21204 – Debian Security Advisory 4906-1
https://notcve.org/view.php?id=CVE-2021-21204
26 Apr 2021 — Use after free in Blink in Google Chrome on OS X prior to 90.0.4430.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de la memoria previamente liberada en Blink en Google Chrome en OS X versiones anteriores a 90.0.4430.72, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_14.html • CWE-416: Use After Free •