CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2021-21209 – Debian Security Advisory 4906-1
https://notcve.org/view.php?id=CVE-2021-21209
26 Apr 2021 — Inappropriate implementation in storage in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Una implementación inapropiada en storage en Google Chrome versiones anteriores a 90.0.4430.72, permitió a un atacante remoto filtrar datos de origen cruzado por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execution of code. Versions less than 9... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_14.html • CWE-346: Origin Validation Error •
CVSS: 8.6EPSS: 0%CPEs: 5EXPL: 0CVE-2021-21207 – Debian Security Advisory 4906-1
https://notcve.org/view.php?id=CVE-2021-21207
26 Apr 2021 — Use after free in IndexedDB in Google Chrome prior to 90.0.4430.72 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted Chrome Extension. Un uso de la memoria previamente liberada en IndexedDB en Google Chrome versiones anteriores a 90.0.4430.72, permitía a un atacante convencer a un usuario de instalar una extensión maliciosa para llevar a cabo potencialmente un escape del sandbox por medio de una extensión de Chrome diseñada Multip... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_14.html • CWE-416: Use After Free •
CVSS: 8.1EPSS: 0%CPEs: 5EXPL: 0CVE-2021-21205 – Debian Security Advisory 4906-1
https://notcve.org/view.php?id=CVE-2021-21205
26 Apr 2021 — Insufficient policy enforcement in navigation in Google Chrome on iOS prior to 90.0.4430.72 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Una aplicación de políticas insuficientes en navigation en Google Chrome en iOS versiones anteriores a 90.0.4430.72, permitía a un atacante remoto omitir las restricciones de navegación por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the ... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_14.html •
CVSS: 8.8EPSS: 0%CPEs: 6EXPL: 0CVE-2021-21204 – Debian Security Advisory 4906-1
https://notcve.org/view.php?id=CVE-2021-21204
26 Apr 2021 — Use after free in Blink in Google Chrome on OS X prior to 90.0.4430.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de la memoria previamente liberada en Blink en Google Chrome en OS X versiones anteriores a 90.0.4430.72, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_14.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 0%CPEs: 5EXPL: 0CVE-2021-21203 – Debian Security Advisory 4906-1
https://notcve.org/view.php?id=CVE-2021-21203
26 Apr 2021 — Use after free in Blink in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de la memoria previamente liberada en Blink en Google Chrome versiones anteriores a 90.0.4430.72, permitía a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execution of co... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_14.html • CWE-416: Use After Free •
CVSS: 9.6EPSS: 1%CPEs: 5EXPL: 0CVE-2021-21201 – Debian Security Advisory 4906-1
https://notcve.org/view.php?id=CVE-2021-21201
26 Apr 2021 — Use after free in permissions in Google Chrome prior to 90.0.4430.72 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Un uso de la memoria previamente liberada en permissions en Google Chrome versiones anteriores a 90.0.4430.72, permitía a un atacante remoto que había comprometido el proceso del renderizador llevar a cabo potencialmente un escape del sandbox por medio de una página HTML diseñada Multiple vulnerabilities have ... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_14.html • CWE-416: Use After Free •
CVSS: 8.6EPSS: 0%CPEs: 5EXPL: 0CVE-2021-21202 – Debian Security Advisory 4906-1
https://notcve.org/view.php?id=CVE-2021-21202
26 Apr 2021 — Use after free in extensions in Google Chrome prior to 90.0.4430.72 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted Chrome Extension. Un uso de la memoria previamente liberada en extensions de Google Chrome versiones anteriores a 90.0.4430.72, permitía a un atacante convencer a un usuario de instalar una extensión maliciosa para llevar a cabo potencialmente un escape del sandbox por medio de una extensión de Chrome diseñada Mult... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_14.html • CWE-416: Use After Free •
CVSS: 9.6EPSS: 4%CPEs: 4EXPL: 0CVE-2021-21206 – Google Chromium Blink Use-After-Free Vulnerability
https://notcve.org/view.php?id=CVE-2021-21206
26 Apr 2021 — Use after free in Blink in Google Chrome prior to 89.0.4389.128 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un uso de la memoria previamente liberada en Blink en Google Chrome versiones anteriores a 89.0.4389.128, permitía a un atacante remoto explotar potencialmente una corrupción de la memoria por medio de una página HTML diseñada Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execution ... • https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop.html • CWE-416: Use After Free •
CVSS: 9.8EPSS: 95%CPEs: 4EXPL: 3CVE-2021-21220 – Google Chromium V8 Improper Input Validation Vulnerability
https://notcve.org/view.php?id=CVE-2021-21220
15 Apr 2021 — Insufficient validation of untrusted input in V8 in Google Chrome prior to 89.0.4389.128 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Una comprobación insuficiente de una entrada no confiable en V8 en Google Chrome versiones anteriores a e 89.0.4389.128, permitió a un atacante remoto explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada This vulnerability allows remote attackers to execute arbitrary code on affected installations... • https://packetstorm.news/files/id/176210 • CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 1%CPEs: 4EXPL: 0CVE-2021-21199 – Debian Security Advisory 4886-1
https://notcve.org/view.php?id=CVE-2021-21199
09 Apr 2021 — Use after free in Aura in Google Chrome on Linux prior to 89.0.4389.114 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. Un uso de la memoria previamente liberada en Aura en Google Chrome en Linux versiones anteriores a 89.0.4389.114, permitía a un atacante remoto que había comprometido el proceso del renderizador explotar potencialmente una corrupción de la pila por medio de una página HTML diseñada Multiple vulnerabilities h... • https://chromereleases.googleblog.com/2021/03/stable-channel-update-for-desktop_30.html • CWE-416: Use After Free •