The vulnerability of the Extensions component of the Google Chrome browser allows a perpetrator to execute arbitrary code or cause a service failure.

🗓️ 30 Sep 2024 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 1 Views

Chrome Extensions use-after-free flaw may enable code execution or denial of service via a page.

Reporter	Title	Published	Views	Family All 21
Circl	CVE-2021-38023	24 Sep 202400:41	–	circl
CNNVD	Google Chrome 安全漏洞	23 Sep 202400:00	–	cnnvd
CNVD	Unspecified Vulnerability in Google Chrome (CNVD-2024-39249)	25 Sep 202400:00	–	cnvd
CVE	CVE-2021-38023	23 Sep 202421:56	–	cve
Cvelist	CVE-2021-38023	23 Sep 202421:56	–	cvelist
Debian CVE	CVE-2021-38023	23 Sep 202421:56	–	debiancve
Fedora	[SECURITY] Fedora 40 Update: chromium-129.0.6668.89-1.fc40	5 Oct 202401:54	–	fedora
Fedora	[SECURITY] Fedora 39 Update: chromium-129.0.6668.89-1.fc39	6 Oct 202401:26	–	fedora
Tenable Nessus	Fedora 40 : chromium (2024-452b60addf)	5 Oct 202400:00	–	nessus
Tenable Nessus	Fedora 39 : chromium (2024-7aba3c1531)	6 Oct 202400:00	–	nessus

Vulners

Node

google google_chromeRange<92.0.4515.107

Source	Link
issues	www.issues.chromium.org/issues/40056265
security-tracker	www.security-tracker.debian.org/tracker/CVE-2021-38023
vuldb	www.vuldb.com/
feedly	www.feedly.com/cve/CVE-2021-38023
web	www.web.nvd.nist.gov/view/vuln/detail

30 Sep 2024 00:00Current

5.9Medium risk

Vulners AI Score5.9

CVSS 38.8

CVSS 210

EPSS0.00291

chrome extensions flaw use after free arbitrary code execution denial of service crafted page