7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.02 Low
EPSS
Percentile
87.5%
Use-after-free in DOM, possibly leading to arbitrary code execution.
Credit to Maksymillian Motyl.
Cross-origin-bypass in V8 bindings allows an attacker to bypass the
same-origin policy.
Privilege escalation using service workers.
Various fixes from internal audits, fuzzing and other initiatives,
fixing unspecified vulnerabilities not disclosed by upstream.