CVSS: 5.5EPSS: 0%CPEs: 5EXPL: 0CVE-2021-21218 – Debian Security Advisory 4906-1
https://notcve.org/view.php?id=CVE-2021-21218
26 Apr 2021 — Uninitialized data in PDFium in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted PDF file. Los datos no inicializados en PDFium en Google Chrome versiones anteriores a 90.0.4430.72, permitían a un atacante remoto obtener información potencialmente confidencial de la memoria del proceso por medio de un archivo PDF diseñado Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could ... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_14.html • CWE-908: Use of Uninitialized Resource •
CVSS: 5.5EPSS: 0%CPEs: 5EXPL: 0CVE-2021-21217 – Debian Security Advisory 4906-1
https://notcve.org/view.php?id=CVE-2021-21217
26 Apr 2021 — Uninitialized data in PDFium in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted PDF file. Los datos no inicializados en PDFium en Google Chrome versiones anteriores a 90.0.4430.72, permitían a un atacante remoto obtener información potencialmente confidencial de la memoria del proceso por medio de un archivo PDF diseñado Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could ... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_14.html • CWE-252: Unchecked Return Value •
CVSS: 6.5EPSS: 13%CPEs: 5EXPL: 0CVE-2021-21216 – Debian Security Advisory 4906-1
https://notcve.org/view.php?id=CVE-2021-21216
26 Apr 2021 — Inappropriate implementation in Autofill in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to spoof security UI via a crafted HTML page. Una implementación inapropiada en Autofill en Google Chrome versiones anteriores a 90.0.4430.72, permitió a un atacante remoto falsificar la Interfaz de Usuario de seguridad por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execution of code. Versions... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_14.html • CWE-290: Authentication Bypass by Spoofing •
CVSS: 8.8EPSS: 1%CPEs: 5EXPL: 0CVE-2021-21214 – Debian Security Advisory 4906-1
https://notcve.org/view.php?id=CVE-2021-21214
26 Apr 2021 — Use after free in Network API in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to potentially exploit heap corruption via a crafted Chrome Extension. Un uso de la memoria previamente liberada en Network API en Google Chrome versiones anteriores a 90.0.4430.72, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una extensión de Chrome diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in th... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_14.html • CWE-416: Use After Free •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2021-21215 – Debian Security Advisory 4906-1
https://notcve.org/view.php?id=CVE-2021-21215
26 Apr 2021 — Inappropriate implementation in Autofill in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to spoof security UI via a crafted HTML page. Una implementación inapropiada en Autofill en Google Chrome versiones anteriores a 90.0.4430.72, permitió a un atacante remoto falsificar la Interfaz de Usuario de seguridad por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execution of code. Versions... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_14.html • CWE-290: Authentication Bypass by Spoofing •
CVSS: 8.8EPSS: 1%CPEs: 5EXPL: 0CVE-2021-21213 – Debian Security Advisory 4906-1
https://notcve.org/view.php?id=CVE-2021-21213
26 Apr 2021 — Use after free in WebMIDI in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de la memoria previamente liberada en WebMIDI en Google Chrome versiones anteriores a 90.0.4430.72, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execution o... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_14.html • CWE-416: Use After Free •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2021-21212 – Debian Security Advisory 4906-1
https://notcve.org/view.php?id=CVE-2021-21212
26 Apr 2021 — Incorrect security UI in Network Config UI in Google Chrome on ChromeOS prior to 90.0.4430.72 allowed a remote attacker to potentially compromise WiFi connection security via a malicious WAP. La Iinterfaz de Usuario de seguridad incorrecta en Network Config UI en Google Chrome en ChromeOS versiones anteriores a 90.0.4430.72, permitía a un atacante remoto comprometer potencialmente la seguridad de la conexión WiFi por medio de un WAP malicioso Multiple vulnerabilities have been found in Chromium and Google C... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_14.html •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2021-21211 – Debian Security Advisory 4906-1
https://notcve.org/view.php?id=CVE-2021-21211
26 Apr 2021 — Inappropriate implementation in Navigation in Google Chrome on iOS prior to 90.0.4430.72 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Una implementación inapropiada en Navigation en Google Chrome en iOS versiones anteriores a 90.0.4430.72, permitió a un atacante remoto filtrar datos de origen cruzado por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execution of code. ... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_14.html • CWE-346: Origin Validation Error •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2021-21210 – Debian Security Advisory 4906-1
https://notcve.org/view.php?id=CVE-2021-21210
26 Apr 2021 — Inappropriate implementation in Network in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to potentially access local UDP ports via a crafted HTML page. Una implementación inapropiada en Network en Google Chrome versiones anteriores a 90.0.4430.72, permitió a un atacante remoto acceder potencialmente a los puertos UDP locales por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execution ... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_14.html •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2021-21208 – Debian Security Advisory 4906-1
https://notcve.org/view.php?id=CVE-2021-21208
26 Apr 2021 — Insufficient data validation in QR scanner in Google Chrome on iOS prior to 90.0.4430.72 allowed an attacker displaying a QR code to perform domain spoofing via a crafted QR code. Una comprobación insuficiente de datos en QR scanner en Google Chrome en iOS versiones anteriores a 90.0.4430.72, permitió a un atacante que mostraba un código QR llevar a cabo una suplantación de dominio por medio de un código QR diseñado Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which c... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_14.html • CWE-20: Improper Input Validation •