Total
153 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2021-30618 | 2 Fedoraproject, Microsoft | 3 Fedora, Edge, Edge Chromium | 2023-12-10 | 6.8 MEDIUM | 8.8 HIGH |
Chromium: CVE-2021-30618 Inappropriate implementation in DevTools | |||||
CVE-2021-30606 | 2 Fedoraproject, Microsoft | 3 Fedora, Edge, Edge Chromium | 2023-12-10 | 6.8 MEDIUM | 8.8 HIGH |
Chromium: CVE-2021-30606 Use after free in Blink | |||||
CVE-2021-30612 | 2 Fedoraproject, Microsoft | 3 Fedora, Edge, Edge Chromium | 2023-12-10 | 6.8 MEDIUM | 8.8 HIGH |
Chromium: CVE-2021-30612 Use after free in WebRTC | |||||
CVE-2021-30621 | 2 Fedoraproject, Microsoft | 3 Fedora, Edge, Edge Chromium | 2023-12-10 | 4.3 MEDIUM | 6.5 MEDIUM |
Chromium: CVE-2021-30621 UI Spoofing in Autofill | |||||
CVE-2021-30615 | 2 Fedoraproject, Microsoft | 3 Fedora, Edge, Edge Chromium | 2023-12-10 | 4.3 MEDIUM | 6.5 MEDIUM |
Chromium: CVE-2021-30615 Cross-origin data leak in Navigation | |||||
CVE-2021-30611 | 2 Fedoraproject, Microsoft | 3 Fedora, Edge, Edge Chromium | 2023-12-10 | 6.8 MEDIUM | 8.8 HIGH |
Chromium: CVE-2021-30611 Use after free in WebRTC | |||||
CVE-2021-30613 | 2 Fedoraproject, Microsoft | 3 Fedora, Edge, Edge Chromium | 2023-12-10 | 6.8 MEDIUM | 8.8 HIGH |
Chromium: CVE-2021-30613 Use after free in Base internals | |||||
CVE-2021-30624 | 2 Fedoraproject, Microsoft | 3 Fedora, Edge, Edge Chromium | 2023-12-10 | 6.8 MEDIUM | 8.8 HIGH |
Chromium: CVE-2021-30624 Use after free in Autofill | |||||
CVE-2021-30616 | 2 Fedoraproject, Microsoft | 3 Fedora, Edge, Edge Chromium | 2023-12-10 | 6.8 MEDIUM | 8.8 HIGH |
Chromium: CVE-2021-30616 Use after free in Media | |||||
CVE-2021-30610 | 2 Fedoraproject, Microsoft | 3 Fedora, Edge, Edge Chromium | 2023-12-10 | 6.8 MEDIUM | 8.8 HIGH |
Chromium: CVE-2021-30610 Use after free in Extensions API | |||||
CVE-2020-16009 | 6 Cefsharp, Debian, Fedoraproject and 3 more | 8 Cefsharp, Debian Linux, Fedora and 5 more | 2023-12-10 | 6.8 MEDIUM | 8.8 HIGH |
Inappropriate implementation in V8 in Google Chrome prior to 86.0.4240.183 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | |||||
CVE-2021-21119 | 2 Google, Microsoft | 2 Chrome, Edge Chromium | 2023-12-10 | 6.8 MEDIUM | 8.8 HIGH |
Use after free in Media in Google Chrome prior to 88.0.4324.96 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. | |||||
CVE-2021-21129 | 2 Google, Microsoft | 2 Chrome, Edge Chromium | 2023-12-10 | 4.3 MEDIUM | 6.5 MEDIUM |
Insufficient policy enforcement in File System API in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page. | |||||
CVE-2021-21131 | 2 Google, Microsoft | 2 Chrome, Edge Chromium | 2023-12-10 | 4.3 MEDIUM | 6.5 MEDIUM |
Insufficient policy enforcement in File System API in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page. | |||||
CVE-2021-21118 | 2 Google, Microsoft | 2 Chrome, Edge Chromium | 2023-12-10 | 6.8 MEDIUM | 8.8 HIGH |
Insufficient data validation in V8 in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. | |||||
CVE-2021-21128 | 2 Google, Microsoft | 2 Chrome, Edge Chromium | 2023-12-10 | 6.8 MEDIUM | 8.8 HIGH |
Heap buffer overflow in Blink in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | |||||
CVE-2021-21124 | 2 Google, Microsoft | 2 Chrome, Edge Chromium | 2023-12-10 | 6.8 MEDIUM | 9.6 CRITICAL |
Potential user after free in Speech Recognizer in Google Chrome on Android prior to 88.0.4324.96 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. | |||||
CVE-2021-21133 | 2 Google, Microsoft | 2 Chrome, Edge Chromium | 2023-12-10 | 4.3 MEDIUM | 6.5 MEDIUM |
Insufficient policy enforcement in Downloads in Google Chrome prior to 88.0.4324.96 allowed an attacker who convinced a user to download files to bypass navigation restrictions via a crafted HTML page. | |||||
CVE-2021-21135 | 2 Google, Microsoft | 2 Chrome, Edge Chromium | 2023-12-10 | 4.3 MEDIUM | 6.5 MEDIUM |
Inappropriate implementation in Performance API in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page. | |||||
CVE-2021-21126 | 2 Google, Microsoft | 2 Chrome, Edge Chromium | 2023-12-10 | 4.3 MEDIUM | 6.5 MEDIUM |
Insufficient policy enforcement in extensions in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass site isolation via a crafted Chrome Extension. |